By: mcwresearch.com » Rapid Versus Responsible Disclosure

mcwresearch.com » Rapid Versus Responsible Disclosure — Wed, 19 Jul 2006 15:45:54 +0000

[...] Back in April I wrote a series of posts about third party patches. I was irked after the WMF and the IE createtextrange() vulnerabilities were disclosed rapidly and weeks before Microsoft’s asinine, rigid monthly patch cycle. I won’t revisit the series here, you can read it seperately if you are curious but in neither case did Microsoft deem it necessary to release an out of cycle patch. As an aside, in article three of the series I was again commenting on one of Alan’s articles. I know it, looks like I’m a Shimmy fanatic. =) [...]

By: mcwresearch.com » IE Createtextrange Vuln went quiet

mcwresearch.com » IE Createtextrange Vuln went quiet — Sat, 01 Apr 2006 15:47:49 +0000

[...] I’ve had plenty of time to think about and read about differing opinions on the “third-party patch” quandary (my original post on it is here). I’ve read opinions that companies could be releasing third-party patches as a means of getting their name in front of potential customers or as a means of PR/advertisement. [...]

Comments on: Third Party Patches for Windows?

By: mcwresearch.com » Rapid Versus Responsible Disclosure

By: mcwresearch.com » IE Createtextrange Vuln went quiet