[HIB]New vulnerability disclosure deadline puts pressure on tardy software vendors

Looking to put pressure on software vendors that procrastinate on fixing security flaws, the world’s biggest broker of vulnerability data is drawing a line in the sand.Starting tomorrow (August 4, 2010), TippingPoint’s Zero Day Initiative (ZDI) will enforce a six-month deadline for patches on all vulnerabilities bought from the security research community and reported to software vendors.TippingPoint, a program that purchases the rights to vulnerability information in exchange for exclusivity to broker fixes with affected vendors, says the new six-month deadline will apply to all currently outstanding issues.

**Hidden Content: To see this hidden content your post count must be 1 or greater.**