Microsoft Offers $100,000 Bounty For Windows 8.1 Exploits - Polidicks

[QUOTE=Foda;41136139][URL]http://www.cvedetails.com/vulnerability-list/vendor_id-33/year-2013/Linux.html[/URL] [URL]http://www.cvedetails.com/vendor/5632/Windows.html[/URL] guess which one has more known vulnerabilities?[/QUOTE] one is used on pretty much all computers and closed source, the other isn't as well used and is open source. Of course Linux has less vulnerabilities found, why would you target it if you can just target windows

Seems like a good strategy for spiraling into bankruptcy. It was intended to be a joke..

[QUOTE=Rangergxi;41136349]Seems like a good strategy for spiraling into bankruptcy.[/QUOTE] Because ms is really strapped for cash running the majority of all pcs in the world

I wonder if they would accept those that made an infinite loop causing a browser crash with Javascript... [editline]22nd June 2013[/editline] Then again if IE11 is really up to snuff, then it should ask the user to kill the script

[QUOTE=Rangergxi;41136349]Seems like a good strategy for spiraling into bankruptcy.[/QUOTE] Microsoft can drop this at any time if people just dig up a bunch of exploits and cash them in.

[QUOTE=MatheusMCardoso;41134564]Oh god. They are going bankrupt.[/QUOTE] giving people 100,000 dollars to report bugs doesn't mean that they're bankrupt do you have ANY understanding of what the word means

[QUOTE=Mike Tyson;41136321]one is used on pretty much all computers and closed source, the other isn't as well used and is open source. Of course Linux has less vulnerabilities found, why would you target it if you can just target windows[/QUOTE] but those links are saying the complete opposite?

[QUOTE=Mike Tyson;41136321]one is used on pretty much all computers and closed source, the other isn't as well used and is open source. Of course Linux has less vulnerabilities found, why would you target it if you can just target windows[/QUOTE] There's also the idea of unknown vulnerabilities. Windows could have a lot of vulnerabilities that nobody knows about yet, because it's closed source. Meanwhile, Linux (as well as the GNU toolset and 99% of everything else a Linux user is likely to install) is open source, meaning at any time, a fresh set of eyes can go in, find a vulnerability that the original devs are just passing over because they've seen the code a billion times now, and either point it out to the devs or take initiative and fix it themselves. Those vulnerabilities could have gone unreported to any website that takes record of these things, because it was fixed before someone with malicious intent could get to them. In open source software, finding vulnerabilities is a lot like a word search: if you're not finding any, asking the next guy over to look over it (or even setting it down and coming back to it later) can help you find a ton of them in rapid succession when you were stuck before.

[QUOTE=danharibo;41130482][software product] has a long history of being insecure, ergo [software product] is probably insecure.[/QUOTE] I don't think you quite understand where we are right now

[QUOTE=Tobba;41135707]$11k for an IE exploit? You could get like $10k from just selling it to some russians, and you can do that multiple times[/QUOTE] Or you could decide not to put a whole lot of people under risk and report it to Microsoft.

Remember kids, the first guy gets the prize, the second and third guys get arrested.

[QUOTE=Durrsly;41135711]You are kinda late. 8.1 adds a start button, it just takes you to the Metro screen.[/QUOTE] False promises ahoy. [editline]22nd June 2013[/editline] [QUOTE=GoDong-DK;41138084]Or you could decide not to put a whole lot of people under risk and report it to Microsoft.[/QUOTE] Or first sell it to the Russians, wait a few months, THEN to Microsoft. Lods of emone