Posted by: David Harley | July 23, 2015

Yosemite 0-Day: vendor and researcher ethics

This article by Chris Williams for The Register on Get root on an OS X 10.10 Mac: The exploit is so trivial it fits in a tweet appeared yesterday, and does a reasonable job of describing what the problem is.

Today’s blog by Graham Cluley for Intego – Apple Criticised for Not Patching OS X Yosemite Zero-Day Vulnerability is rather more analytical in terms of ethical considerations: not only the ethics of responsible disclosure, but also the assertion that Apple has fixed the bug in the beta of the forthcoming El Capitan, but hasn’t backported it to Yosemite.

David Harley

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.


%d bloggers like this: