The author of an alleged vulnerability in Microsoft's Excel software remains committed to bringing the flaw into the public eye, despite the best attempts of Microsoft and eBay to prevent it, vnunet has learned today.
An eBay user known only as 'Fearwall' had posted an auction offering an as yet undisclosed flaw in Excel, known in the security community as a zero-day vulnerability, with the intention of selling a detailed description of the bug to the highest bidder.
EBay pulled the auction because it constituted an item that promoted illegal activity. But at the time the sale ended it is reported to have topped the $60 mark.
The vulnerability seller claims to have contacted Microsoft prior to auctioning the vulnerability, and reports suggest that Microsoft's Security Response Centre is examining the details.
But the security community is largely divided over the disclosure of such zero-day flaws.
Typically, software companies are given a window of between one and a number of months to examine and release patches for the problem, before the finer details are released to the public.
But 'Fearwall' is understood to have said in his auction description: "Since I was unable to find any use for this byproduct of Microsoft developers, it is now available for you at the low starting price of $0.01 - a fair value estimation for any Microsoft product."
The seller even offered Microsoft employees a discount: "To qualify, you must provide an @microsoft.com email address and must mention discount code LINUXRULZ during checkout," he said.
He also posed the disclaimer: "The information you receive is for educational and research purposes only."
'Fearwall', who has since changed his eBay user name, told vnunet.com today: "I am working with Microsoft to resolve [the situation] and arguing with eBay regarding the auction."
Latest Tesla news: Tesla stock price tanks amid reports of 'widening probe' by SEC and claims the base Model 3 loses money
SEC 'probe' takes its toll on Tesla as new research suggests that Tesla loses $6,000 on every $35,000 Model 3
10nm Cannon Lake Core i3-8121U CPUs make a rare outing with Intel's NUC mini PC
'Notorious' Australian child hacker thought he had executed 'flawless' hack
The former employee says that Tesla fired him for bringing the accusations to management internally