[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] MSIE (mshtml.dll) OBJECT tag vulnerability

To: <full-disclosure@xxxxxxxxxxxxxxxxx>
Subject: Re: [Full-disclosure] MSIE (mshtml.dll) OBJECT tag vulnerability
From: "Morning Wood" <se_cur_ity@xxxxxxxxxxx>
Date: Wed, 26 Apr 2006 16:34:41 -0700

Your blog seems to suggest that you are also quite severely mistaken in
regard to my identity.

 "Secunia did not notify Microsoft ahead of time in order to allow for
 them to patch it before it became public. [...] Microsoft chided
 Zalewski [from Secunia] for jumping the gun and posting his findings
 before a comprehensive patch could be created, but the researcher is
 unapologetic."

But that's for you to figure out what's wrong in that picture.


I will take a shot in the dark here... you do not work for Secunia.

and yes... bad blogging is far worse than any 0day, it does nothing butprovide

inacurate information, hysteria and FUD.

Tim... next time you decide to try to write a comprehensive blog entry, dosomeresearch first. ( and stop relying on the footer to try to decypher whosomeone is or not )


Secunia sponsors the FD list, and is not the releasing enity in this case.

DAMN THE BLOGGERS!!!

cheers,
MW

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] MSIE (mshtml.dll) OBJECT tag vulnerability
  - From: Tim Bilbro
- Re: [Full-disclosure] MSIE (mshtml.dll) OBJECT tag vulnerability
  - From: Michal Zalewski

Prev by Date: Re: [Full-disclosure] What is wrong with schools these days?
Next by Date: [Full-disclosure] Interesting but vulnerable scheme for tokenless auth
Previous by thread: Re[2]: [Full-disclosure] MSIE (mshtml.dll) OBJECT tag vulnerability
Next by thread: Re: [Full-disclosure] MSIE (mshtml.dll) OBJECT tag vulnerability
Index(es):
- Date
- Thread