[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] WMF round-up, updates and de-mystification

To: Gadi Evron <ge@xxxxxxxxxxxx>
Subject: Re: [Full-disclosure] WMF round-up, updates and de-mystification
From: InfoSecBOFH <infosecbofh@xxxxxxxxx>
Date: Tue, 3 Jan 2006 03:37:09 -0800

On 1/3/06, Gadi Evron <ge@xxxxxxxxxxxx> wrote:

> A small BUT IMPORTANT correction for future generations:
> The 0day was originally found and reported by Hubbard Dan from Websense
> on a closed vetted security mailing list, and later on at the Websense
> public page. All those who took credit for it took it wrongly.

Yes, important if you are a marketing guy or if your mouth is planted
firmly on the websense dick.

I am sure most of us are part of other and even private mailing lists.
 So the credit for discovery should go to whomever first PULICALLY
disclosed the vuln.  I have no idea who that was but thanks to a
certain few I saw this vuln in early December.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] WMF round-up, updates and de-mystification
  - From: Gadi Evron

Prev by Date: Re: [Full-disclosure] WMF round-up, updates and de-mystification
Next by Date: [Full-disclosure] Open Xchange XSS
Previous by thread: Re: [Full-disclosure] WMF round-up, updates and de-mystification
Next by thread: RE: [Full-disclosure] WMF round-up, updates and de-mystification
Index(es):
- Date
- Thread