Microsoft on Tuesday provided key details of a Coordinated Vulnerability Disclosure (CVD) program it announced in July. The program is aimed at bolstering collaboration between Microsoft, its customers and the security community. Microsoft also released a Word Document that clarifies Microsoft s vulnerability disclosure policy for independent and salaried security researchers. The company also published a list of Microsoft Vulnerability Research Advisories, which details privately reported, third-party vulnerabilities that have been remediated.
Source: https://threatpost.com/microsoft-seeking-smoother-bug-disclosure-042011/75148/