[27734] in bugtraq
Re: [Full-Disclosure] Re: Oracle Security Contact
daemon@ATHENA.MIT.EDU (Chris Wysopal)
Wed Nov 6 19:08:01 2002
Date: Wed, 6 Nov 2002 16:03:25 +0000 (GMT)
From: Chris Wysopal <weld@vulnwatch.org>
To: "Steven M. Christey" <coley@linus.mitre.org>
In-Reply-To: <200211060432.XAA23560@linus.mitre.org>
Message-ID: <Pine.BSO.4.33.0211061556370.7236-100000@vikki.vulnwatch.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
There is a list of vendor contacts maintained by VulnWatch to assist our
readers:
http://www.vulnwatch.org/links.html
There you will find product security email contacts and links to vendor
security bulletin archives.
Updates or new contact information welcome. Please mail
webmaster@vulnwatch.org.
-Chris
On Tue, 5 Nov 2002, Steven M. Christey wrote:
>
> On the full-disclosure list, low halo asked:
>
> >Could someone please give me the security contact address for Oracle
> >Corporation? It seems as though their marketing department's
> >"Unbreakable" slogan makes them think that its OK to bury their
> >security advisories & contact info deep within their site somewhere.
>
> It's not immediately obvious when navigating from the www.oracle.com
> home page, but it's listed at:
> http://otn.oracle.com/deploy/security/alerts.htm
>
> secalert_us@oracle.com
>
