Over 10,000 customers served

Like us on Facebook Review us on Yelp Pin us on Pinterest Tweet us on Twitter Google Plus Follow us on Foursquare

310.948.0588 9415 Culver Blvd no.102 Culver City, CA 90232

Microsoft Knew About Bug for Over a Year

Microsoft has confirmed today that they were aware of a bug behind an epidemic of Internet Explorer attacks for more than a year, but continue to defend their security process against critics. Mike Reavey, director of Microsoft’s Security Response Center, admitted that the company received word of a critical flaw in ActiveX control during the spring of 2008. This specific bug can be exploited in IE6 and IE7 on Windows XP.

Researchers Ryan Smith and Alex Wheeler reported the bug’s prescence to Microsoft executives when they worked at IBM’s ISS X-Force in 2007. While Smith and Wheeler won’t specify exactly when they reported the vulnerability, the bug’s Common Vulnerabilities and Exposures (CVE) number points to an early 2008 detection timeframe. John Pescatore, a primary security analyst for Microsoft insists that the almost 18-month stretch between the bugbaing found and now is too long for customers to operate their systems without a patch. “That’s just not an acceptable timeframe,” Pescatore said. “It shouldn’t take a year, not [for] a company the size of Microsoft.

It was also revealed today that Microsof has still not completed work ona complete fix for the bug. Courtesy of computerworld.com

Voted no.1 IT Sevices in Los Angeles

Top Rated Laptop Repair in Los Angeles!

9415 Culver Blvd. #102 Culver City CA 90232
(310) 948-0588 | info@marvistec.com
Mon-Fri 9:00am - 6:00pmSat 10:00am - 2:00pm