ic/wsc_best_practices_v2_0_1.pdf/8188
Credits:
Tobias Glemser
tglem...@secuvera.de
secuvera GmbH
https://www.secuvera.de
Simon Winter
simon.winte...@web.de
Aalen University
https://www.hs-aalen.de/en
Discla
ing a first patch preview
2014/10/14 notified vendor the patch does not address the issue
2014/10/24 vendor sent a second patch preview
2014/12/10 vendor published 0.9.4.1 release
2014/12/16 public disclosure
Credits:
Tobias Glemser, secuvera GmbH
tglem...@secuvera.de
http
rsion 3.0.2
2012/04/18 public disclosure
Credits:
Tobias Glemser (tglem...@tele-consulting.com)
Tele-Consulting security networking training GmbH, Germany
www.tele-consulting.com
Disclaimer:
All information is provided without warranty. The intent is to
provide information t
ggest_pwd=%22%20onmouse
over%3dprompt%28972137%29%20bad%3d%22
Possible solutions:
- use version 1.2 final
Disclosure Timeline:
2011/08/09 vendor contacted via cont...@combodo.com
2011/08/09 inital vendor response
2011/09/06 first patch by the vendor
2011/09/12 second patch by th
sent an updated internal advisory to business
partners addressing all issues
2011/10/24 coordinated public disclosure
Credits:
Tobias Glemser (tglem...@tele-consulting.com)
Tele-Consulting security networking training GmbH, Germany
www.tele-consulting.com
Disclaimer:
All inform
ty of Munich this
November.
Regards
Tobias Glemser
OWASP German Chapter
P.S.: Early Bird for registration also started! Be sure to get your ticket
right now and check: http://www.german-owasp-day.owasp.de
including all details here (closes 01 August
2010):
http://www.owasp.org/index.php/OWASP_AppSec_Germany_2010_Conference#tab=Call_for_Papers_-_English_Version
Cheers
Tobias Glemser
Board Member German Chapter OWASP