The one duty we owe to history is to re-write it - Oscar Wilde
|
|
|
Microsoft will release an IE patch
SOFTWARE BUNGLER Microsoft is rushing to release one more in a seemingly endless stream of patches to fix a security vulnerability in its Internet Explorer web browser.
The flaw in Internet Exploder versions 6 and 7 allows an attacker to take control of a victim's computer.
The exploit was discovered by Israeli researcher Moshe Ben Abu only last week, which means that it will be only a matter of time before it is used by criminal hackers.
Sample exploit code has already been released, and that has spurred Microsoft to issue an emergency patch for the flaw before its next 'Patch Tuesday'.
Jerry Bryant, a senior security communications manager lead at Microsoft, said that the Vole is working hard to produce an update that is now in testing.
Writing in his blog, Bryant said that this is a critical and time-intensive step of the process as the update must be tested against all affected versions of Internet Explorer on all supported versions of Windows.
However he was evasive when it came to saying if he will release the patch sooner than the traditional patch Tuesday.
"When the update is ready for broad distribution, we will make that decision based on customer needs," was all he would say.
Apparently the vulnerability does not apply to Internet Explorer 8, so Microsoft of course prefers people to upgrade instead. µ
Share this:
Share
How about just stop using flawed software? Don't use Windows...
*You* people are the idiots if you think you're isolated from the damage these compromised machines cause. The last thing we need is Microsoft "abandoning" flawed software, and then having those machines 0wned by botnet owners who get to spam your email addresses, DDOS websites and other criminal activities.
The degeneracy of some INQ readers is simply astonishing.
Really, I am not sure that you can call the constant security problems in all Microsoft products as receiving "support".
But the "idiot" part I think is correct, as Microsoft treats its users "like" idiots. How long before they think people realize that "hey, they keep patching this stuff, but never seem to plug the security holes".
People should just tell them to stuff their insecure software, and use open source instead. At least it is free (of cost, and of all the security headaches).
people stop supporting a software conglomerate that puts out crappy software at ridiculous prices, then strongarm you into ditching THAT software in 3yrs for yet ANOTHER piece of crappy software that is ridden with holes and bugs. maybe.... just MAYBE everyone out there doesnt have the mentality of a 5yr old and have to have the absolute latest of everything, and would rather what they initially paid for... actually WORK! Wow, what a concept. how about looking at it from the point that 8yrs after it came out, they are STILL fixing XP? and the browser (I.E.6)? people paid an outrageous price fo something, that still isnt fixed 8 years later, and your answer is to keep installing newer crap? crap is crap... crap v2 is no better than crap v1.
Another step further:
Please, stop supporting the idiots that still use Microsoft IE!
My employer has web pages and databases that are only supported by IE v6. We can optionally upgrade to v8, but then we can do certain things - and yes they are job related.
Too bad there isn't a standard for HTML that could have been followed so this kind of thing wouldn't happen - oops there was and IS, but Micr0$ucks wants to lock you into their products so they branch off and do their own thing.
Just goes to show you can't WIN using Micr0$ucks products, but you are certain to LOSE.
I'm going to reiterate what Dimitris said:
Please Microsoft, stop supporting the idiots that still use IE6 and IE7.
Seriously. Continuing to support IE6 is moronic. M$ need to release a mandatory update for all of their OS's which installs IE8 - if users don't download that mandatory update, they ought not to be allowed to do so much as log on to their machine.
@Dimitris
Some of those 'idiot' admins would be out of the job if they as much as switched the toolbar color on IE. Megacorps don't care about security until it bytes them in the profits. They care that the current system works and that the new one doesn't. They are not going to rewrite half their (badly written) software just so they can upgrade. The exact same reasoning applies to Vista/7
What if a firefox 1.x app you paid for stops working in firefox 2.x? Get the original developer, pay heavy $$$ for him to rewrite the app with the possibility of messing it up? Or just keep an old version of FF? Hint: corps always go for the cheaper method
Please Microsoft, stop supporting the idiots that still use IE6 and IE7.
What was the last time you saw Mozilla issuing a patch for Firefox 1.5 after Firefox 2 came out? That's right, Never! The damn thing is years old, unsupported and outdated, so it's assumed that users should have upgraded long time ago.
The same should go for IE: Any vulnerability that applies in IE6/7 but not IE8 should not be fixed.
And the excuse "People in offices whose admins never upgrade" doesn't count. If your admin is too lazy to upgrade to IE8, then it should be too lazy to apply the patch.
As a result, the patch will only make matters worse, by showing the attacker were exactly the vulnerability hides.