[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] informative...

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: Re: [Full-disclosure] informative...
From: Andrea Purificato - bunker <bunker@xxxxxxxxxxxxx>
Date: Wed, 29 Aug 2007 19:41:27 +0200

On Wednesday 29 August 2007, Fabio Pietrosanti (naif) wrote:

> http://seclists.org/fulldisclosure/2007/Jul/0504.html
> comments?

Hi Fabio,

I fully agree with you, but i have less trouble than you speaking about this 
type of vulnerability after reporting the XSS to the owner.
If nobody replies to me after reasonable time, I consider my work finished and 
I feel free to talking about anything, in the spirit of full-disclosure.

If someone wants to public "0day" XSS without report it to the owner, it's not 
my problem!

Regards,
-- 
Andrea "bunker" Purificato
+++++++++++[>++++++>+++++++++++++++++++++++++++++++++>++++
++++++<<<-]>.>++++++++++.>.<----------.>---------.<+++++++.

http://rawlab.mindcreations.com 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] informative...
  - From: withak
- Re: [Full-disclosure] informative...
  - From: Fabrizio
- Re: [Full-disclosure] informative...
  - From: Fabio Pietrosanti (naif)

Prev by Date: [Full-disclosure] Cisco Security Advisory: XSS and SQL Injection in Cisco CallManager/Unified Communications Manager Logon Page
Next by Date: [Full-disclosure] Multiple vulnerabilities in Doomsday 1.9.0-beta5.1
Previous by thread: Re: [Full-disclosure] informative...
Next by thread: [Full-disclosure] Cisco Security Advisory: XSS and SQL Injection in Cisco CallManager/Unified Communications Manager Logon Page
Index(es):
- Date
- Thread