[Dev] Tizen vulnerability reports

Vitaliy Potapov noginsk at rambler.ru
Fri Dec 15 10:30:59 UTC 2017


Hi BugBountyTeam!
I've received your emails and responded on the same day. Maybe it was moved to
spam?Could you re-check on your side because it seems to be an important issue if
some letters didn't reach you.Here are the raw content of my reply on July, 7:

Received: from [37.140.172.119] by mail.rambler.ru with HTTP; Fri, 7 Jul 2017 13:01:16 +0300
From: "Vitaliy Potapov" <noginsk at rambler.ru>
To: "secbugbounty" <secbugbounty at samsung.com>
Reply-To: "Vitaliy Potapov" <noginsk at rambler.ru>
Subject: RE: [Samsung Bug Bounty] More information requested
Date: Fri, 7 Jul 2017 13:01:16 +0300
Content-Transfer-Encoding: 7bit
Content-Type: multipart/mixed; boundary="_----------=_14994216761920432"
In-Reply-To: <1499421664.736377.23635.18527 at mail.rambler.ru>
Message-Id: <1499421676.472943.19204.19401 at mail.rambler.ru>
MIME-Version: 1.0
References: <1499421664.736377.23635.18527 at mail.rambler.ru>
X-Mailer: Rambler WebMail, http://mail.rambler.ru/

This is a multi-part message in MIME format.

--_----------=_14994216761920432
Content-Type: multipart/alternative; boundary="_----------=_14994216761920433"

This is a multi-part message in MIME format.

--_----------=_14994216761920433
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"; format="flowed"

Hi,

Sensitive information with vulnerability steps and code is attached as encr=
ypted
file.

Tested on TV:

MN : UE49K5500=20
PD : --/--/----=20
SN : 0BL73LDHA00871E=20
FW : T-HKMFKDEUC-1180.5=20
FC : SWU-OU_T-HKMFKDEUC_1180_170530=20
MI : T-HKMFKDEUC=20
LS : CIS_RUSSIA=20
DI : CPCPLUMAL74GG=20
MA : B8BBAF0CC15B=20
VS : 1180.170530

Thank you.



Anyway I will re-submit both vulnerabilities today from another email (on
gmail.com).
Thank you!

-- Regards,
Vitaliy Potapov

  15.12.2017, 13:23, SecBugBounty <secbugbounty at samsung.com>

  Dear, Vitaliy Potapov

  As we checked, you reported 2 submissions to Samsung TV Bug Bounty on
  2017-07-04.

  After we received your submissions, we answered you and asked you more
  information about the issues via e-mail.

  We have been handling each bug bounty report with the 2 week-window. It
  doesn't seem our initially response reached you and your follow-up response
  got back to us within 2 weeks.

  We will appreciate it if you can resubmit your report to Samsung TV Bug
  Bounty. Our team will get back to you as soon as possible.

  Thanks again for your contibution to Tizen.

  We hope to see you soon on our program. https://samsungtvbounty.com

  Best regards,

  Samsung Smart TV Bug Bounty Team

  [IMAGE]

  [IMAGE]
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.tizen.org/pipermail/dev/attachments/20171215/d4e3c913/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 2.gif
Type: image/gif
Size: 13402 bytes
Desc: not available
URL: <https://lists.tizen.org/pipermail/dev/attachments/20171215/d4e3c913/attachment-0001.gif>


More information about the Dev mailing list