More August patch woes for Microsoft
Microsoft is having a seriously bad time with MS06-042.
Not only does the original patch cause IE to crash when browsing websites using the HTTP 1.1 protocol but now they have found out that this bug the security patch is EXPLOITABLE.
So Microsoft's own security patch is a security risk. This is utterly inexcusable and shows that something is missing at Redmond's testing labs. Hopefully they will not make this mistake again. For now though, This fixed patch remains unreleased.
EDIT: Microsoft have now re-released the patch. Interestingly enough, the patch name stays the same put the version number on the web page has changed and also the published date on the website stays the same. I'll keep an eye on this and post any further news that comes this way.
Not only does the original patch cause IE to crash when browsing websites using the HTTP 1.1 protocol but now they have found out that this bug the security patch is EXPLOITABLE.
So Microsoft's own security patch is a security risk. This is utterly inexcusable and shows that something is missing at Redmond's testing labs. Hopefully they will not make this mistake again. For now though, This fixed patch remains unreleased.
EDIT: Microsoft have now re-released the patch. Interestingly enough, the patch name stays the same put the version number on the web page has changed and also the published date on the website stays the same. I'll keep an eye on this and post any further news that comes this way.
Labels: Security
posted by Gary Williams at
Wednesday, August 23, 2006
0 Comments:
Post a Comment
<$I18N$LinksToThisPost>:
Create a Link
<< Home