|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[Full-Disclosure] Notifying an institution about a vulnerability
From: Cliff Bamford (bamford
oz.net)
Date: Sat Apr 22 2006 - 14:53:31 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
> i think you may exploit this vuln and get several SSN, and then email
> to the institute to show the severity of your report.
>
In the US, doing that could get you into a ton of criminal and civil trouble
(I'm sad to say).
What steps did the original poster take to notify the institution, exactly?
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]