Microsoft Tries To Censor Bing Vulnerability

Posted by kdawson on Monday November 9, 2009 @07:30PM from the don't-shout-and-wave-it-about dept.

An anonymous reader writes "Microsoft's Bing search engine has a vulnerability with its cash-back promotion, which impacts both merchants and customers. In traditional Microsoft fashion, the company has responded to the author of the breaking Bing cash-back exploit with a cease & desist letter, rather than by fixing the underlying security problem. It is possible for a malicious user to create fake Bing cash-back requests, resulting in not only fake cash-back costs for the merchant, but also blocking legitimate customers from receiving their cash-back from Bing. The original post is currently available in Bing's cache, although perhaps not for long. But no worries, the author makes it clear that the exploit should be painfully obvious to anyone who reads the Bing cash-back SDK."

3 of 275 comments (clear)

Min score:

Reason:

Sort:

Re:Use microsoft == get screwed by QuoteMstr · 2009-11-09 20:16 · Score: 0, Offtopic

Use proprietary software and you get screwed.
Fixed that for you.
Re:Mirror by timmarhy · 2009-11-09 23:30 · Score: 0, Offtopic

actually, Raadt could learn a lot from them. MS hire very smart people and make some great products. they however fuck up like everyone else as well.

--
If you mod me down, I will become more powerful than you can imagine....
Re:And now thanks to /. and microsoft by lorenlal · 2009-11-10 00:56 · Score: 0, Offtopic

All suspects are guilty. Period. Otherwise they wouldn't be suspects, would they? -Troops