Excel vulnerability posted on eBay
An auction in which disclosure of a vulnerability in Microsoft's Excel spreadsheet software was being sold has been pulled by eBay, following a complaint by Microsoft. It's not unusual for somebody to disclose details of a vulnerabilty, but selling that information on eBay is a new one.
Quote:
The vulnerability, which could allow a malicious programmer to create an Excel file that could take control of a Windows computer when opened, appears to be real. Members of the Microsoft Security Response Center (MSRC) are investigating the vulnerability report, a spokesperson for the software giant said Thursday night. eBay pulled the auction after Microsoft complained to the company's Trust and Safety Team, said Catherine England, spokeswoman for the online auctioneer.
[Security Focus]