Hi Jeffrey!
Earlier Christian Heinrich told me to send information to FIRST Members.
Among which there is US CERT.
So, I can do it. I will send all data to US CERT in case if IBM still
ignore to fix it (unlike their official statements). Because if IBM will
fix and make their own disclosures and
On Thu, Jul 19, 2012 at 9:31 AM, MustLive wrote:
> Hello guys!
>
> In May I've wrote to the list about case of how IBM handle information about
> vulnerabilities in their software. Here is the summary of my two months
> conversation with IBM PSIRT and other employees of this company. I was
> plann
On Thu, 19 Jul 2012 10:13:48 -0400
Григорий Братислава wrote:
>
> Maybe IBM is see who you are and is just chuckle because none of
> your advisories is ever worth anything?
>
> Perhaps is maybe yes, IBM is read through BS, nonsense,
> BSnonsense, NonsenseBS?
May be it could be due to a heavy b
On Thu, Jul 19, 2012 at 9:31 AM, MustLive wrote:
> - During 16.05-20.05 I've wrote five advisories via contact form at IBM
> site. No reaction from "IT security".
> - At 20.05 I've contacted "Software support". Received formal answer.
> - At 20.05 informed support, that this is security issues (n
Hello guys!
In May I've wrote to the list about case of how IBM handle information about
vulnerabilities in their software. Here is the summary of my two months
conversation with IBM PSIRT and other employees of this company. I was
planning to end up this story on pessimistic note, but previous ni