Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft Flip-Flops On URI Protocol Handing Flaw

Posted by kdawson on Thursday October 11, 2007 @11:46AM from the so-it's-a-bug dept.

a-twitter writes "After months of insisting there is nothing to patch, Microsoft has done a complete 180 on the URI protocol handling vulnerability, announcing in a security advisory that a Windows update will be released to revise URI handling code within ShellExecute() to be more strict. The MSRC blog explains the background and offers more details on this issue."

2 of 126 comments (clear)

Min score:

Reason:

Sort:

Microsoft has been a destroyer of standards... by Futurepower(R) · 2007-10-11 12:10 · Score: -1, Offtopic

In my opinion, Microsoft has consistently failed to supply reasonable leadership.

Microsoft has been a destroyer of standards, rather than a builder of standards. A lot of Microsoft's "success" is due to the fact that, in this time in history, it has been possible to abuse the customer, and the customer has not been knowledgeable enough to protect himself or herself.
Failzors? by Anonymous Coward · 2007-10-11 16:33 · Score: -1, Offtopic

Developers. The Jesus Up The Anyone that thinks boug4t the farm....