Re: Administrivia: Response to OIS Draft on "Security Vulnerability and Response Process"

• Previous message: NGSSoftware Insight Security Research: "Etherleak information leak in Windows Server 2003 drivers"
• In reply to: Russ: "Administrivia: Response to OIS Draft on "Security Vulnerability and Response Process""
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date:         Mon, 9 Jun 2003 22:43:08 +0200
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM

I have also put some notes about the current OIS draft online at

http://www.pivx.com/larholm/ois/june42003notes.html

I hope you might find some useful comments. I've tried to keep it short, and
you'll find the juicier bits at the bottom.

Regards
Thor Larholm
PivX Solutions, LLC - Senior Security Researcher

-----Original Message-----
From: Windows NTBugtraq Mailing List
[mailto:NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM]On Behalf Of Russ
Sent: 5. juni 2003 19:43
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM
Subject: Administrivia: Response to OIS Draft on "Security Vulnerability
and Response Process"

<snip
http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0306&L=ntbugtraq&F=P
&S=&P=1189 >

oooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo
Delivery co-sponsored by TruSecure
oooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo
Free 14-day trial of New Threat & Vulnerability Notification Service

TruSecure's new IntelliShield(tm) web-based threat and vulnerability
service isn't your typical alert service. Supported by TruSecure's vast
intelligence resources - including the ICSA Labs - IntelliShield's early
warning, analysis, decision support, and threat management tools provide
organizations with unmatched intelligence to better protect critical
information assets. Experience it for yourself - just click below to begin
your free, no obligation 14-day trial today!

http://www.trusecure.com/offer/s0074/

oooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo

• Previous message: NGSSoftware Insight Security Research: "Etherleak information leak in Windows Server 2003 drivers"
• In reply to: Russ: "Administrivia: Response to OIS Draft on "Security Vulnerability and Response Process""
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: NetSDK vulnerable to SQL Slammer ... Which version of Visual Studio 2003 are you referring to? ... Free 14-day trial of New Threat & Vulnerability Notification Service ... intelligence resources - including the ICSA Labs - IntelliShield's early ... (NT-Bugtraq) Re: NetSDK vulnerable to SQL Slammer ... NetSDK vulnerable to SQL Slammer ... Free 14-day trial of New Threat & Vulnerability Notification Service ... intelligence resources - including the ICSA Labs - IntelliShield's early ... (NT-Bugtraq) Re: NetSDK vulnerable to SQL Slammer ... Engine (MSDE). ... NetSDK vulnerable to SQL Slammer ... Free 14-day trial of New Threat & Vulnerability Notification Service ... (NT-Bugtraq) Re: [Full-disclosure] "responsible disclosure" explanation (an example of the fallacy of i ... Let me just define "responsible disclosure" first of all, ... vulnerabilities pose any threat to human life. ... security measures of an airline, that allows me access to passenger ... In this scenario, much as a software vulnerability, two factors are ... (Full-Disclosure) RE: [fw-wiz] VA vs PT tool ... > functionality but also exploit the vulnerability thus ... production networks. ... Back to basics time - any business RISK is made up of three things. ... THREAT, which is also called an attack vector - a way this vulnerability ... (Firewall-Wizards)