Barney's Blog

Blog archive

No Surprise: Exposed XP Flaw Now Exploited

On Monday I told you how Google publicly disclosed an XP Help flaw that had yet to be patched. As of then, there were no reported attacks, but I wondered aloud how long it would take to exploit this now well-known and understood hole.

It didn't take long -- Microsoft now says hackers are now going after the flaw which allows for remote code execution.

Some of you were on Google's side, arguing that Microsoft has no real motivation to fix a hole if no one knows about it. Others believe it is irresponsible to tell hackers how they attack our software. The latter group seems to have some pretty good evidence on their side.

What is your take? Let me know at dbarney@redmondmag.com.

Posted by Doug Barney on 06/18/2010 at 1:17 PM


Featured

  • Microsoft Bolsters Windows IoT with NXP and SQL Server Support

    Microsoft's Internet of Things (IoT) product line is continuing to grow, with a few new developments highlighted this week.

  • Tamper Protection Now Available to Microsoft Defender ATP Subscribers

    The Microsoft Defender Advanced Threat Protection (ATP) E5 subscription plan now has an optional "tamper protection" security feature, Microsoft announced on Monday.

  • Exploring OCR, a New Way To Get Data into Excel

    Microsoft recently added a new optical character recognition feature to Excel that lets users import data from a photograph taken from a smartphone. Here's how to use it.

  • Microsoft Authenticator App To Get Real-Time Phishing Protections

    Microsoft is working on adding capabilities to its Microsoft Authenticator app to help defeat security breaches enabled by advanced attack techniques, including phishing and man-in-the-middle methods.

comments powered by Disqus

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.