Cisco is not aware of any malicious exploitation of these
vulnerabilities.
These vulnerabilities were reported to Cisco by Dr. Tom Dunigan of
the University of Tennessee and Net-SNMP in cooperation with the CERT
Coordination Center.
Status of this Notice: FINAL
============================
THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY
provide valid, secure, contact information that can get security issues
reported to the proper individuals within their organization. This contact
information should be clearly published on their public facing web sites.
12/05/2007 - Initial Discovery
12/12/2007 - Contacted Cert Coordination Center to attempt to obtain
appropriate vendor contact information.
12/17/2007 - Additional work on details, proof of concept
interim - No response from Macrovision either directly or through Cert (who
kept in constant contact with me).
01/02/2008 - Posted to product request site for security contact information.
signature to try to determine the version of the software it found.
Vulnerability Reporting/Tracking
- --------------------------------
Reported to CERT Coordination Center September 21, 2009. Assigned
tracking number VU#433821.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (MingW32)
