[36011] in bugtraq
Re: Anyone know IBM's security address?
daemon@ATHENA.MIT.EDU (Jedi/Sector One)
Fri Aug 6 20:51:45 2004
Date: Fri, 6 Aug 2004 23:42:21 +0200
From: Jedi/Sector One <j@pureftpd.org>
To: Michael Scheidell <scheidell@secnap.net>
Cc: full-disclosure@lists.netsys.com, bugtraq@securityfocus.com
Message-ID: <20040806214243.GA16367@c9x.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <B3BCAF4246A8A84983A80DAB50FE724214B122@secnap2.secnap.com>
On Fri, Aug 06, 2004 at 05:11:19PM -0400, Michael Scheidell wrote:
> Have a vulnerability in an IBM product.
> sent alert to security@ibm.com secure@ibm.com and cert@ibm.com, all three bounced.
> Can anyone tell me the official address or procedure to notify IBM?
For AIX-releated flaws, the contact is security-alert@austin.ibm.com
For other products... good luck. I also have a vulnerability in an IBM
product but I wasn't able to get in touch with anyone.
Online forms told me to call a number that is unreachable outside USA.
The AIX security officer told me he would find the right contact but I
never got anything else since.
--
__ /*- Frank DENIS (Jedi/Sector One) <j at 42-Networks.Com> -*\ __
\ '/ <a href="http://www.PureFTPd.Org/"> Secure FTP Server </a> \' /
\/ <a href="http://www.Jedi.Claranet.Fr/"> Misc. free software </a> \/
