[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Re: Anyone know IBM's security address?

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: Re: [Full-Disclosure] Re: Anyone know IBM's security address?
From: "Oliver@xxxxxxxxxx" <Oliver@xxxxxxxxxx>
Date: Sat, 07 Aug 2004 10:58:25 +0200

send it to security-alert@xxxxxxxxxxxxxx
They will forward your mail to the responsible people!

I did it the same way, and had a response within some hours!

/oliver

Jedi/Sector One wrote:

On Fri, Aug 06, 2004 at 05:11:19PM -0400, Michael Scheidell wrote:

Have a vulnerability in an IBM product. sent alert to security@xxxxxxx secure@xxxxxxx and cert@xxxxxxx, all three bounced. Can anyone tell me the official address or procedure to notify IBM?

For AIX-releated flaws, the contact is security-alert@xxxxxxxxxxxxxx For other products... good luck. I also have a vulnerability in an IBM product but I wasn't able to get in touch with anyone.

Online forms told me to call a number that is unreachable outside USA. The AIX security officer told me he would find the right contact but I never got anything else since.


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- [Full-Disclosure] Anyone know IBM's security address?
  - From: Michael Scheidell
- [Full-Disclosure] Re: Anyone know IBM's security address?
  - From: Jedi/Sector One

Prev by Date: [Full-Disclosure] [anti-XSS]about CERT/CC:malicious_code_mitigation
Next by Date: Re: [Full-Disclosure] Re: Anyone know IBM's security address?
Previous by thread: Re: [Full-Disclosure] Re: Anyone know IBM's security address?
Next by thread: [Full-Disclosure] Re: Anyone know IBM's security address?
Index(es):
- Date
- Thread