Shaon
 The debate has flared up once again about whether users should
wait for an official Microsoft patch to a vulnerability in its software
or take their chances with a third party patch as a temporary measure.The highly publicised actions of a group of security professionals calling themselves ZERT (Zeroday Emergency Response Team) have brought the issue to the fore by issuing fixes for two separate vulnerabilities within two weeks. The first patch issued by ZERT for an Internet Explorer and HTML email flaw involving Vector markup anguage (VML) may well have embarrassed Microsoft to issuing an official patch ahead of time last week, instead of waiting until Patch Tuesday on October 10. ZERT then followed its initial patch with another patch this week for a vulnerability in the Windows Shell, which affects Windows 2000, Windows XP and windows 2003 Server. If exploited by visiting a malicious website using Internet Explorer the vulnerability could allow remote code execution on the user's computer. With the number of exploits mounting and a third party again issuing its own fix to the flaw, Microsoft is once again considering issuing an official patch ahead of its normal Patch Tuesday cycle.  News source: iTWire |
-
0.00 (0 Vote) 
- Digg this
Login or register to add a comment
Create a new account or login to join in the conversation on NewXwin.net. You'll also be able to NewXwin.net stories to help promote things you like.
|
Random Technology News
Microsoft's Health Vault Could Snag Advertisers, Given Time
by
Morshad
in
Technology News
- 10/08/07
·
0 favs
|
|
|
Latest Technology News
Review: Google's Mobile App & Voice Search for iPhone
by
News Editor
in
Technology News
- 5 hours ago
·
1 favs
HP fine-tunes Opteron rack box for nonexistent servers
by
Morshad
in
Technology News
- 11/17/08
·
1 favs
|
Popular Technology News
HP fine-tunes Opteron rack box for nonexistent servers
by
Morshad
in
Technology News
- 11/17/08
·
1 favs
|
No Comments!
It's quiet in here... can you hear the echo?