Andrew Plato wrote: > I read (and my ISS associates tell me) that ISS reported it first. > The first story I read about it, Saturday morning cited the ISS > alert. However, eEye claimed to have been tracking it from Friday > night. I never heard a peep from Symantec until Sunday. AFCERT claimed to have it Friday night. Perhaps he either said or meant "eEye" was second. The gap was described as 5 minutes, and it's not like anyone listens to AFCERT :) Apparently one of their analysts had been studying this particular SQL vulnerability just a week or so before, and recognized the 'sploit right away. Crispin -- Crispin Cowan, Ph.D. Chief Scientist, WireX http://wirex.com/~crispin/ Security Hardened Linux Distribution: http://immunix.org Available for purchase: http://wirex.com/Products/Immunix/purchase.html Just say ".Nyet"
This archive was generated by hypermail 2b30 : Mon Jan 27 2003 - 23:56:03 PST