Windows Help Needs Help -- Redmond Channel Partner

Barney's Blog

Windows Help Needs Help

The help system for Windows XP and Server 2003 has a flaw that could (but hasn't yet) allow remote code execution exploits. For the attack to work, a user will have to visit a malicious Web site or click a bad link in a spam message.

The flaw was discovered by Google which blasted Microsoft for waiting to release the information. Correct me if I'm wrong, but disclosing an unpatched flaw is an open invitation to hackers, n'est-ce pas?

What do you think? Should flaws be publicized before there's a remedy? Send me a malicious-code-free e-mail with your thoughts to dbarney@redmondmag.com.

Posted by Doug Barney on June 14, 2010 at 11:53 AM

Featured

Microsoft Adds 10 Months to Exchange Server 2010's Support Window

Microsoft has changed Exchange Server 2010's end-of-support date to Oct. 13, 2020, about a 10-month extension from the original deadline.
2019 Microsoft Conference Calendar: For Partners, IT Pros and Developers

Here's your guide to all the IT training sessions, partner meet-ups and annual Microsoft conferences you won't want to miss this year.
The 2019 Microsoft Product Roadmap

From the next major update to Windows 10 to the next generation of HoloLens, here's what's on tap from Microsoft this year.
Microsoft Delivers 'Light' September Security Patch Bundle

Microsoft on Tuesday released September security patches for Windows and applications, addressing 85 vulnerabilities.