On Fri, 11 Feb 2005 19:20:11 -0500, Byron L. Sonne <[EMAIL PROTECTED]> wrote: > > This is a quick announcement that the recent Microsoft patch (MS-05- has > > fixed a vulnerability I found a while back in SMB. > > This vuln that you found 'a while back', did you mention anything about > it then or have you just conveniently kept it to yourself until now? > Doesn't sound like full disclosure to me. >
I thought Full Disclosure propagators actually endorsed waiting for a vendor to fix the vulnerability before announcing a security hole.. On the other hand what do I know? My hat is black. -LC _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html