Any additional info from @msftsecresponse on the "potential impact of this method" after their review? 
-
This Tweet is unavailable.
-
Probably you were not the first to submit the bug. But if you ask for more detailed info they usually will answer you telling you the exact reason.
-
-
last time they ignore me for two months, then they claim dupe. But I talked with other person acknowledged for the bug, and he had not submitted it. Mine was rated EOP, POC was provided, should have given decent bounty. He had 0 EOP in that service- how the hell can it be a dupe?
-
And mine was triaged, i use one information disclosure bug to trigger the eop. MS somehow judge that both my submissions was dupe of other submission. But in reality they just waited for someone to submit something in the same service so they could scam me- and only pay him 1000$
- Show replies
New conversation -
-
-
Well each I time asked after receiving the automated bounty email, they answered, but I may have been just lucky
-
well, you get answer- when they have had the needed time to make up a lie. For me they had to wait for a low value bounty they could claim dupe. But even if that was true i still demonstrated higher impact as I did eop. https://drive.google.com/file/d/1-MGVE-MZSyZWR1Fl1qRb0bVJBgauJ0wk/view … Stuff like that takes time
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.