There have been a few extraordinary sales on eBay, but you probably wouldn’t have expected to see a Microsoft software vulnerability on the auction site.
However, one auction last week of a vulnerability in Microsoft Excel reached about £30 in value before eBay belatedly removed the item, which was placed by a seller called Fearwall.
eBay says the listing had been pulled for violating its policy against encouraging illegal activity.
Microsoft said it was aware of the reported flaw, which was discovered on 6 December and lies in the way Excel validates data when handling documents.
The cheeky eBay seller even rubbed salt in Microsoft’s wounds by offering Microsoft employees a 10% discount.
So now you can advertise even Microsoft vulnerabilities on eBay, alongside tickets for next year’s World Cup Final. It was only a matter of time before such a stunt occurred. But how did eBay’s own security procedures allow such an auction to be created? Perhaps it’s time for the website to examine its own vulnerabilities.