Location : Cleveland, OH
The Register is reporting that Intevydis, a Russian security firm, will be releasing a bug a day for a month. According to the article,
Bugs in Lotus Domino will be posted the week of January 25. The full schedule:
The Register reports that Intevydis is tired of being used as unpaid research "lackeys" for the large software vendors and now they are going public with their vulnerabilities. They hope to make the software vendors move more quickly to fix the holes in their software.
Link: The Register: Frustrated bug hunters to expose a flaw a day for a month
Link: Intevydis Blog
Intevydis said it launched its campaign after becoming more and more disillusioned with foot-dragging by vendors when confronted by security flaws in their products. "After working with the vendors long enough, we’ve come to conclusion that, to put it simply, it is a waste of time," Evgeny Legerov, a founder of Intevydis told Krebs. "Now, we do not contact with vendors and do not support so-called ‘responsible disclosure’ policy."
Bugs in Lotus Domino will be posted the week of January 25. The full schedule:
[January 11, January 17] – week of directory server bugs, 0days in Novell eDirectory, Sun Directory, Tivoli Directory..etc
[January 18 - January 24] – week of web server bugs, 0days in Zeus Web Server, Sun Web Server, Apache(?)..etc
[January 25 - February 1] – week of database bugs, inspired by our research for DBJIT Toolset, 0days in Mysql, IBM DB2, Lotus Domino, Informix, Oracle(?)…and hopefully more
The Register reports that Intevydis is tired of being used as unpaid research "lackeys" for the large software vendors and now they are going public with their vulnerabilities. They hope to make the software vendors move more quickly to fix the holes in their software.
Link: The Register: Frustrated bug hunters to expose a flaw a day for a month
Link: Intevydis Blog
Powered By : Domino
BlogSphere V1.3.1
Join The WebLog Revolution at BlogSphere.net