---- New IE Attack Expected - Pre-Patch Workaround Issued
tedster - 7:25 am on Aug 19, 2005 (gmt 0)
Microsoft is concerned that this new report of a vulnerability in Internet Explorer was not disclosed responsibly
I would say that sending out exploit details to a mailing list without notifying the company whose software is involved is irresponsible. It's not just Microsoft who suffers when malicious parties get exploit details first - it's the users who need to be considered, and letting MS know, out of the public eye, seems only right to me.