Barney's Blog

Blog archive

Windows Help Needs Help

The help system for Windows XP and Server 2003 has a flaw that could (but hasn't yet) allow remote code execution exploits. For the attack to work, a user will have to visit a malicious Web site or click a bad link in a spam message.

The flaw was discovered by Google which blasted Microsoft for waiting to release the information. Correct me if I'm wrong, but disclosing an unpatched flaw is an open invitation to hackers, n'est-ce pas?

What do you think? Should flaws be publicized before there's a remedy? Send me a malicious-code-free e-mail with your thoughts to [email protected]

Posted by Doug Barney on June 14, 2010 at 11:53 AM


Featured

  • Microsoft Readies Improvements to Teams Conferencing Hardware

    To better equip offices for meetings in the new post-lockdown, hybrid-work era, Microsoft is introducing increased functionality for Microsoft Teams hardware.

  • 2021 Microsoft Conference Calendar: For Partners, IT Pros and Developers

    Here's your guide to all the IT training sessions, partner meet-ups and annual Microsoft conferences you won't want to miss.

  • What We Know About 'Windows 11,' Microsoft's Next-Gen Client OS

    Ahead of a June 24 Microsoft presentation about the future of Windows, a pre-release build of Microsoft's next client operating system was leaked this week.

  • The 2021 Microsoft Product Roadmap

    From Windows 10X to the next generation of Microsoft's application server products, here are the product milestones coming down the pipeline in 2021.