According to their website, they provide 'offensive exploit services' to governments and intelligence services. So possibly, depending on wether you view those people as bad people.
They even admit it's not just governments they sell to: VUPEN customers include worldwide governments and major corporations in finance, technology and manufacturing. [http://www.vupen.com/english/company.php] although their continued use of weasel words does stop just short of admitting that they're enabling industrial espionage.
VUPEN's offensive IT intrusion solutions and government grade exploits enable the Intelligence community and government agencies to achieve their lawful intercept missions using VUPEN's industry-recognized vulnerability research and intelligence.
I am trying to imagine a situation where _lawfuly_ government agencies need to break into someones IE. Any ideas?
hmmm.. I think law enforcement agencies need to stay in accordance with the law even with their "discovery". Breaking into someone's IE or exploiting vulnerabilities in order to get information otherwise you wouldn't be able to get falls under breaking into someones "property", I think, even if its "just" an Internet browser.
Therefore, you "legitimate" search warrant will be thrown out of window by a judge, and classified as the Fruit of the poisonous tree.
