[newsimage]http://static.rankone.nl/images_posts/2010/06/QzVH8B.jpg[/newsimage]Hackers are currently exploiting a Windows XP security hole that a Swiss Google security engineer, Tavis Ormandy, publicly released detailed information about last week. Read the full article here: [http://www.myce.com/news/hackers-exploit-unpatched-windows-xp-security-hole-31003/](http://www.myce.com/news/hackers-exploit-unpatched-windows-xp-security-hole-31003/) Please note that the reactions from the complete site will be synched below.
So his methods of encouraging Microsoft to fix the bug include publishing what the bug is to the world so it can be exploited. Interesting.
Sounds like a bunch of Google vs. Microsoft junk to me . . .
He did say that it was unfortunate that his employer (Google) got dragged into this, as it has nothing to do with it. For example, he also found numerous bugs & seecurity holes in Flash, which Adobe patched within 30 days.
[QUOTE=justcallmebob;2526261]So his methods of encouraging Microsoft to fix the bug include publishing what the bug is to the world so it can be exploited. Interesting.[/QUOTE]
With large bureaucracies you often have to light a fire under their asses to get anything done. Since XP is nearing EoL it’s likely they don’t feel like fixing it. A similar situation happened with an IE6 security hole on Windows 98SE when it was nearing EoL. They decided it wasn’t worth fixing even though it was officially still supported when the flaw was discovered.
[QUOTE=RTV71;2526301]Since XP is nearing EoL it’s likely they don’t feel like fixing it. [/QUOTE]Extended support for XP with SP3 ends in April 2014.