On Fri, 12 Jan 2007, Ben Bucksch wrote: > Basic idea is that vendors should have the ability to fix them without > the public exploiting it at the same time, [...]
They have that ability. They have always had it. The only thing they need to do it is to get their hands dirty and find the vulnerabilities themselves (or to hire someone else to do it under a NDA). --Pavel Kankovsky aka Peak [ Boycott Microsoft--http://www.vcnet.com/bms ] "Resistance is futile. Open your source code and prepare for assimilation." _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
