Secunia CSI7
Advisories
Research
Forums
Create Profile
Our Commitment
PSI
PSI API
CSI
OSI
xSI
Vulnerabilities
Programs
Open Discussions
My Threads
Create Thread
Statistics
About

Forum Thread: Vendors still use the "legal" weapon

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Open Discussions

See the original Secunia blog entry:
Vendors still use the "legal" weapon

Secunia Vendors still use the "legal" weapon
Secunia Official 15th Sep, 2010 10:32
Ranking: 0
Posts: 0
User Since: -
System Score: -
Location: Copenhagen, DK
In these days, one would have believed that vendors have learned the lesson not to threaten with legal actions to withhold and suppress significant information about vulnerabilities in their products.

nikeshoxshoes RE: Vendors still use the "legal" weapon
Member 15th Sep, 2010 10:32
Score: 1
Posts: 1
User Since: 15th Sep 2010
System Score: N/A
Location: AR
Last edited on 15th Sep, 2010 10:33
good post
Was this reply relevant?
+1
-0
taffy078 RE: Vendors still use the "legal" weapon
Contributor 15th Sep, 2010 16:29
Score: 408
Posts: 1,335
User Since: 26th Feb 2009
System Score: 100%
Location: UK
on 15th Sep, 2010 10:32, Secunia wrote:
In these days, one would have believed that vendors have learned the lesson not to threaten with legal actions to withhold and suppress significant information about vulnerabilities in their products.


Are you able/willing to tell us which vendors do this?

--
taffy078, West Yorkshire, UK

Desktop: Compaq Presario (OEM) 32 bit / AMD Athlon / 2 GB RAM
XP Home - SP3/ IE8/ Norton IS - Secunia PSI v2.0.0.3003

Laptop: Win 7 / IE11 / PSI v2.0.0.3003
Was this reply relevant?
+2
-0
secunidoe RE: Vendors still use the "legal" weapon
Member 15th Sep, 2010 19:34
Score: 3
Posts: 3
User Since: 15th Sep 2010
System Score: N/A
Location: AX
Last edited on 15th Sep, 2010 19:35
on 15th Sep, 2010 16:29, taffy078 wrote:
Are you able/willing to tell us which vendors do this?

Turns out this is an automated truncation of http://secunia.com/blog/15

(they put the link above the first post among tons of useless stuff; it would make a lot more sense to put it *inside* the first post, so that people can know the post has been truncated)

Edit: and it's actually a 3-year old post, but you wouldn't know that either just by looking at this thread
Was this reply relevant?
+3
-0
taffy078 RE: Vendors still use the "legal" weapon
Contributor 16th Sep, 2010 08:29
Score: 408
Posts: 1,335
User Since: 26th Feb 2009
System Score: 100%
Location: UK
thanks secunidoe.

That's an interesting exchange of correspondence - I was impressed by the Secunia CTO's clear & concise language. Especially how customers using OEM can be affected but unaware.

Perhaps Secunia will shed some light on why, as you point out, this has "come to light now, nearly three years later?

Also:
(1) did the litigation counsel for Autonomy see sense and not pursue?
(2) were the vulnerabilities resolved?

--
taffy078, West Yorkshire, UK

Desktop: Compaq Presario (OEM) 32 bit / AMD Athlon / 2 GB RAM
XP Home - SP3/ IE8/ Norton IS - Secunia PSI v2.0.0.3003

Laptop: Win 7 / IE11 / PSI v2.0.0.3003
Was this reply relevant?
+3
-0

deara2

RE: Vendors still use the "legal" weapon
[+]
This reply has been minimised due to a negative Relevancy Score.
Anthony Wells RE: Vendors still use the "legal" weapon
Expert Contributor 10th Nov, 2010 17:31
Score: 2437
Posts: 3,330
User Since: 19th Dec 2007
System Score: N/A
Location: N/A

For taffy ,

The thread opened because the first poster to the actual blog comments section triggered it . The blog dates to December 2007 and the first post was by @nikeshoxshoes on 15 Setpember 2010 which is also the date of the Secunia opening cut down entry .

It is just the same as posting under an SA or Vulnerability report , as has been discussed at lenght elsewhere in the Forum .

Comments under a Blog open the thread in the "Open Discussion" sub-forum with the limitations described by @secunidoe .

Hope that clears up that point .

Anthony

--


It always seems impossible until its done.
Nelson Mandela
Was this reply relevant?
+1
-0
taffy078 RE: Vendors still use the "legal" weapon
Contributor 10th Nov, 2010 22:07
Score: 408
Posts: 1,335
User Since: 26th Feb 2009
System Score: 100%
Location: UK
Thanks Anthony but
(1) did the litigation counsel for Autonomy see sense and not pursue?
(2) were the vulnerabilities resolved?




--
taffy078, West Yorkshire, UK

Desktop: Compaq Presario (OEM) 32 bit / AMD Athlon / 2 GB RAM
XP Home - SP3/ IE8/ Norton IS - Secunia PSI v2.0.0.3003

Laptop: Win 7 / IE11 / PSI v2.0.0.3003
Was this reply relevant?
+0
-0
Anthony Wells RE: Vendors still use the "legal" weapon
Expert Contributor 10th Nov, 2010 22:19
Score: 2437
Posts: 3,330
User Since: 19th Dec 2007
System Score: N/A
Location: N/A
Last edited on 10th Nov, 2010 22:20
Try asking Thomas Kristensen , taffy ; he's the one with the knowledge .

--


It always seems impossible until its done.
Nelson Mandela
Was this reply relevant?
+0
-0


 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability