Bugtraq mailing list archives
Re: [Full-Disclosure] MSIE src&name property disclosure
From: Michal Zalewski <lcamtuf () coredump cx>
Date: Mon, 8 Nov 2004 21:37:55 +0100 (CET)
On Mon, 8 Nov 2004, Paul Schmehl wrote: [ Moderators - feel free to kill this ]
Never attribute to malice what can be explained by incompetence. Most likely what happened is the left hand (PR) didn't know what the right hand (secure@) was doing.
Highly unlikely; Microsoft Security Response is a team that, among other things, manages and handles security response, including security-related PR-esque functions (ever seen 'security evangelist' job postings on the net?). The quote is fairly specific, so I doubt it could be spawned by a lone PR drone who did not check with them. -- ------------------------- bash$ :(){ :|:&};: -- Michal Zalewski * [http://lcamtuf.coredump.cx] Did you know that clones never use mirrors? --------------------------- 2004-11-08 21:35 -- http://lcamtuf.coredump.cx/photo/current/
Current thread:
- MSIE src&name property disclosure Berend-Jan Wever (Nov 08)
- Re: [Full-Disclosure] MSIE src&name property disclosure Michal Zalewski (Nov 08)
- Re: [Full-Disclosure] MSIE src&name property disclosure Dave Aitel (Nov 08)
- Re: [Full-Disclosure] MSIE src&name property disclosure Paul Schmehl (Nov 08)
- Re: [Full-Disclosure] MSIE src&name property disclosure Michal Zalewski (Nov 08)
- Re: [Full-Disclosure] MSIE src&name property disclosure Michal Zalewski (Nov 08)