Re: [Full-disclosure] [Advisories] CORE-2009-0114 - HTTP Response Splitting vulnerability in Sun Delegated Administrator

From: Core Security Technologies advisories <advisories@xxxxxxxxxxxxxxxx>
Date: Wed, 22 Apr 2009 19:56:28 -0300

Sergio 'shadown' Alvarez wrote:

Hi,

In the last CORE's advisories I've seen the following credits:

7. *Credits*

This vulnerability was discovered by the SCS team [3] from Core
Security
Technologies.

Does this "SCS team"'s guy have a name ?
Even in a football match 'the team' wins the match, but the GOALS are
made by somebody that deserves the credits.

Yes, they have names and they did not want them to appear in the advisory.

Thank you for your continued interest in crediting vulnerability
discoverers for their findings and your insightful comments about sports.

-ivan

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] [Advisories] CORE-2009-0114 - HTTP Response Splitting vulnerability in Sun Delegated Administrator
  - From: Sergio 'shadown' Alvarez

References:
- [Full-disclosure] CORE-2009-0114 - HTTP Response Splitting vulnerability in Sun Delegated Administrator
  - From: CORE Security Technologies Advisories
- Re: [Full-disclosure] CORE-2009-0114 - HTTP Response Splitting vulnerability in Sun Delegated Administrator
  - From: Sergio 'shadown' Alvarez

Prev by Date: Re: [Full-disclosure] Windows Update (re-)installs outdated Flash ActiveX on Windows XP
Next by Date: [Full-disclosure] [USN-764-1] Firefox and Xulrunner vulnerabilities
Previous by thread: Re: [Full-disclosure] CORE-2009-0114 - HTTP Response Splitting vulnerability in Sun Delegated Administrator
Next by thread: Re: [Full-disclosure] [Advisories] CORE-2009-0114 - HTTP Response Splitting vulnerability in Sun Delegated Administrator
Index(es):
- Date
- Thread

Relevant Pages

Re: [Full-disclosure] [Advisories] CORE-2009-0114 - HTTP Response Splitting vulnerab
... In the last CORE's advisories I've seen the following credits: ... This vulnerability was discovered by the SCS team from Core ... discoverers for their findings and your insightful comments about ...
(Full-Disclosure)
Re: PlatinumFTPserver format string vulnerability ( IHSTeam )
... Actually, the credits don't go to you, these vulnerabilities have been found ... PlatinumFTPserver format string vulnerability ... ftp> user AAAA%x%x%x%x ... I am busy with university etrance exam stuff so I cant write the exploit ...
(Bugtraq)
Re: [Full-disclosure] CORE-2009-0114 - HTTP Response Splitting vulnerability in Sun
... In the last CORE's advisories I've seen the following credits: ... This vulnerability was discovered by the SCS team from Core ... Security ... Even in a football match 'the team' wins the match, ...
(Full-Disclosure)
[Full-disclosure] ID Board 1.1.3 SQL Injection Vulnerability
... Vulnerability Discovery: me, myself and I ... Remote users can fetch MD5 Passwd Hash. ... Contact the Vendor. ... * Credits * ...
(Full-Disclosure)
4 Vulnerabilities in GamePort
... Type of Vulnerability: ... then you will login and you can use the Client PC and the Server wont count down your credits. ...
(Bugtraq)