Re: [Full-disclosure] Right, or wrong? ... I'd be really proud of myself if I sold a bug to someone and they turned ... I've tried the vendor pay model for bug hunting and it wasn't always ...Charter: http://lists.grok.org.uk/full-disclosure-charter.html ... Hosted and sponsored by Secunia - http://secunia.com/ ... (Full-Disclosure)
Re: Reading local files in Netscape 6 and Mozilla (GM#001-NS) ...>bugzilla entry on bugzilla.mozilla.org which is the best place for bug ... This inconsistency can make it difficult for vulnerability reporters... to contact the vendor, and some reporters feel forced to publicly ... (NT-Bugtraq)
[VulnWatch] RE: [VulnDiscuss] new IE bug (confirmed on ALL windows) ... choose to work with a vendor....VulnWatch has never attempted to impose any type of disclosure policy on ... VulnWatch will gladly help any researcher or casual IT Security... before anyone has offered to pay you "beer money" for a bug.... (VulnWatch)
Re: Complicated Disclosure Scenario ... Forward your vuln-dev letter to them, informing them of your dilemma; ... I say give them one last chance or else post the advisory;... Initially the bug presented itself as a way to ... > I informed this vendor, who is by no means short on resources, that I ... (Vuln-Dev)
RE: Complicated Disclosure Scenario ...Vendor stonewalling is the reason full disclosure got started, ... Subject: Complicated Disclosure Scenario... basically, if they refuse to acknowledge the bug, and the bug exists in a ... (Vuln-Dev)
