Stop Microsoft
All Things Microsoft => Microsoft as a Company => Topic started by: Lead Head on 11 October 2008, 15:58
-
..and now it has been published and circulating through the internet
October 10, 2008 (Computerworld) Microsoft Corp. yesterday acknowledged that exploit code is circulating for a vulnerability it reported six months ago, but it has yet to patch.
Source Here (http://TinyURL.com/47u45j)
I don't understand why microsoft does this, they seem to have no problem finding bugs, but they don't patch them until they really start to get serious, like when the actual exploit gets published.
-
The clickjack multi-browser exploit involving Adobe Flash is still unpatched and they sort of gave away what it involves.
The published workaround is to ALWAYS refuse to allow Flash to use your microphone or camera.
Get it here:
http://www.adobe.com/support/security/advisories/apsa08-08.html (http://www.adobe.com/support/security/advisories/apsa08-08.html)