TippingPoint gives vendors six months to fix holes
Source: CNET - Posted by Anthony Pell   
Latest News As of Wednesday, software vendors will have a deadline to fix vulnerabilities reported to them by TippingPoint's Zero Day Initiative rather than allowing holes to remain unpatched indefinitely. Vendors will be required to fix the holes within six months, said Aaron Portnoy, manager of security research at TippingPoint, owned by Hewlett-Packard. TippingPoint runs the Zero Day Initiative, which acts a broker paying researchers for information on vulnerabilities and then providing the information to the vendors so they can fix them.

Extensions to the deadline will be given on a case by case basis, he said. If they don't fix the hole within six months and haven't received an extension, TippingPoint will release limited details on the vulnerability, along with mitigation information so organizations and consumers who are at risk from the hole can protect themselves, he added.

Read this full article at CNET

Only registered users can write comments.
Please login or register.

Powered by AkoComment!