http://unsakred.net/2008/06/25/full-disclosure-what-do-you-think/ Yahoo! Messenger News, Software, Bug Tracking, Hacks, Tips, Tricks, Skins Tue, 02 Dec 2008 00:16:42 +0000 http://wordpress.org/?v=2.6 http://unsakred.net/2008/06/25/full-disclosure-what-do-you-think/#comment-303 Ian Kenefick Sat, 28 Jun 2008 15:09:07 +0000 http://unsakred.net/?p=71#comment-303 If the vendor fails to respond within a reasonable length of time it's necessary. If the vendor fails to respond within a reasonable length of time it’s necessary.

]]> http://unsakred.net/2008/06/25/full-disclosure-what-do-you-think/#comment-296 SGFC Thu, 26 Jun 2008 10:17:55 +0000 http://unsakred.net/?p=71#comment-296 I believe it sometimes is necessary. Especially where Yahoo! Inc. is concerned. We are all familiar with Yahoo's slow responses to exploits found in their chat servers. Example the buffer exploit. 6+ months before it was finally patched after public consumption. Public consumption meaning released in various "programs" to effectively disrupt Yahoo! Chat. The latest exploit through Yahoo! Mobile was patched in a record breaking time. I totally agree with full disclosure unless the exploit is extremely dangerous. I believe it sometimes is necessary. Especially where Yahoo! Inc. is concerned. We are all familiar with Yahoo’s slow responses to exploits found in their chat servers. Example the buffer exploit. 6+ months before it was finally patched after public consumption. Public consumption meaning released in various “programs” to effectively disrupt Yahoo! Chat. The latest exploit through Yahoo! Mobile was patched in a record breaking time. I totally agree with full disclosure unless the exploit is extremely dangerous.

]]>