TL;DR:<p>The author, working at eEye in 2006, found what seemed like a big zero-day in Office 2007, but it only worked with a debugger attached.<p>Not wanting to admit it wasn't a real exploit, the eEye team pulled all-nighters for several days and found a real bug in Microsoft Publisher where SafeInt wasn't enabled for a specific structure.<p>They found a valid exploit (CVE-2007-1754) which got patched in MS07-037. And he regrets causing Microsoft's David LeBlanc to cut his vacation short.
That got obnoxious quickly when the "Hey look everybody I'm drunk! Am I not the most awesome!" tweets got mixed in...<p><a href="https://threadreaderapp.com/thread/1799457232607985698.html" rel="nofollow">https://threadreaderapp.com/thread/1799457232607985698.html</a>