PC World is breaking the news today about the Month of MySpace bugs:
The MySpace hackers launched their project late Thursday expressing simultaneous enthusiasm and disdain for the task ahead. "If it ends up being just as lame as the Month of Apple Bugs, then we haven't really missed the mark. If it's funnier, then great," they wrote on their project's blog. "If it kills this Month of Whatever fad, then hurray for everyone, it's over."
They intend to primarily publish cross site scripting bugs, which can allow an attacker to execute malicious script within a victim's browser, but they may also publish bugs that affect browsers or technologies like Flash or QuickTime. Source:
And finally, old bugs are fine, if they have a myspace application (and are unpatched). We will almost certainly recycle, should we come up with applicable techniques that involve teh mypsace. Source
Responsible disclosure is meeting public norms and standards when it comes to the security of the people who use the software in question.
Suggest a Correction
Found an error or have a suggestion? Let us know and we'll review it.
No comments yet. Be the first to comment!