[VIM] Vulnerabilities in services
thomas.mackenzie at upsploit.com
Mon May 23 16:36:15 CDT 2011
About 170 days ago we had a vulnerability released for Apple. The vulnerability was a problem within a service and not a product.
I was made aware this evening by the researcher that Apple probably wouldn't get in touch when they fixed the service issue due to it being a problem behind the scenes within the service. He was made aware of this by a security manager in ZDI, is this the case?
We believe the problem has been fixed and would like to release the vulnerability before the 180 policy we follow and just wanted to make sure that Apple are likely not to reply to an issue within their service?
More information about the VIM