How to Report a Security Vulnerability to Microsoft

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date:         Fri, 8 Apr 2005 12:21:05 -0700
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello!

The Microsoft Security Response Center investigates all reports of
security vulnerabilities sent to us that affect Microsoft products.
If you believe you have found a security vulnerability affecting a
Microsoft product, we would like to work with you to investigate it.

We are concerned that people might not know the best way to report
security vulnerabilities to Microsoft. You can contact the Microsoft
Security Response Center to report a vulnerability by emailing
secure@microsoft.com directly, or you can submit your report via our
web-based vulnerability reporting form located at:
https://www.microsoft.com/technet/security/bulletin/alertus.aspx.

Sincerely,
Microsoft Security Response Center

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.1
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=kT17
-----END PGP SIGNATURE-----

--
NTBugtraq Editor's Note:
Most viruses these days use spoofed email addresses. As such, using an Anti-Virus product which automatically notifies the perceived sender of a message it believes is infected may well cause more harm than good. Someone who did not actually send you a virus may receive the notification and scramble their support staff to find an infection which never existed in the first place. Suggest such notifications be disabled by whomever is responsible for your AV, or at least that the idea is considered.
--

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Discovered Security Vunerability in WinXP SP2 ... > Microsoft Product Feedback ... A product feedback form like that could ... > Report security-related bugs and learn more about how we secure our ... > * For more information on how to report security vulnerabilities ... (microsoft.public.windowsxp.security_admin) [Full-disclosure] How to Report a Security Vulnerability to Microsoft ... security vulnerabilities sent to us that affect Microsoft products. ... We are concerned that people might not know the best way to report ... Security Response Center to report a vulnerability by emailing ... (Full-Disclosure) How to Report a Security Vulnerability to Microsoft ... security vulnerabilities sent to us that affect Microsoft products. ... We are concerned that people might not know the best way to report ... Security Response Center to report a vulnerability by emailing ... (Bugtraq) Reporting a Security Vulnerability in a Microsoft Product ... security vulnerabilities sent to us that affect Microsoft products. ... We are concerned that people might not know the best way to report ... Security Response Center to report a vulnerability by emailing ... (Bugtraq) Re: Server Usage Report ... I can't seem to find a Web Usage Logging service? ... Download MPS report tool from: ... Microsoft CSS Online Newsgroup Support ... When opening a new thread via the web interface, we recommend you check ... (microsoft.public.windows.server.sbs)