As far as I am aware we have not received anything. It certainly didn¹t go to this mailing list and I don¹t recall anything on [email protected]. I am be preparing a blog post where we analysis these attacks as we speak. Be on the lookout for it :)
On 9/15/15, 12:03 AM, "[email protected] on behalf of Christian Folini" <[email protected] on behalf of [email protected]> wrote: >Good morning, > >What is funny about the paper is, that he lists contact with all >the other vendors and how they reacted to his responsible >disclosure, but this is missing for ModSec. > >Has there been no contact / no interest to patch in due time? > >Ahoj, > >Christian > > >-- >It's easier to ask forgiveness, than it is to get permission. >-- Radm Grace Hopper, aka Amazing Grace > >_______________________________________________ >Owasp-modsecurity-core-rule-set mailing list >[email protected] >http://scanmail.trustwave.com/?c=4062&d=vp331TYeSJtl4OUFeRwH_d8xwpzKptjDeB >Wj6-tsnQ&s=5&u=https%3a%2f%2flists%2eowasp%2eorg%2fmailman%2flistinfo%2fow >asp-modsecurity-core-rule-set ________________________________ This transmission may contain information that is privileged, confidential, and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is strictly prohibited. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. _______________________________________________ Owasp-modsecurity-core-rule-set mailing list [email protected] https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
