Windows-giant mean the period of seven days is too short.
Google’s “Threat Analysis Group has published details of a weakness in Windows 10. A weakness that Microsoft have not yet sealed.
Disclose weakness
According to søkegiganten is this weakness especially severe, because the information they have available indicates that the vulnerability is being actively exploited:
“Windows vulnerability is an elevation of local privileges in the Windows kernel that can be used to drop out of the “security sandbox.””
Microsoft has not yet sealed the hole – ten days after Google notified them about it – and have previously stated that they need more time than seven days to publish a security fixes. Google sets the requirements to the developers that they are weaknesses within seven days before they disclose weakness.
Cursed on the competitor
In the year presented Google a Windows 8.1-security vulnerabilities to the public before it was corrected, something that made Microsoft angry at søkegiganten.
The time claimed Microsoft that Google knew that the security hole should be closed on a Tuesday (oppdateringsdagen to the company), and that Google published the vulnerability in order to discredit them, not to protect the Windows users.
Source:
Neowin
No comments:
Post a Comment