Slashdot Mirror

← Back to Stories (view on slashdot.org)

No Patch For Excel Zero-Day Flaw

Posted by timothy on from the excel-lent dept.

CWmike writes "Microsoft said today that it will deliver three security updates on Tuesday, one of them marked 'critical,' but will not fix an Excel flaw that attackers are now exploiting. 'It doesn't look like we're going to see patches for any open Microsoft security advisories,' said Andrew Storms, director of security operations at nCircle Network Security, pointing to three that have not yet been closed. Those include two advisories issued last year — one from April 2008, another from December — and the Excel alert published last week. 'I'm not really surprised that the Excel vulnerability won't be patched, what with the timeline,' said Storms, 'but the others have been open for a long time.'"

3 of 52 comments (clear)

  1. HAHAHAHHA by Culture20 · · Score: 3, Interesting

    I would be laughing if I didn't have to support MS Office users occasionally. Did they really have to announce that they weren't going to patch excel?

  2. Re:The problem with excel: being mission critical by Slumdog · · Score: 2, Interesting

    Yeah. Decision makers at banks have proved themselves to really intelligent lately, huh?

    did I say they were intelligent?

    --
    FreeBSD bounties
  3. Re:quickly bash them... by larry+bagina · · Score: 2, Interesting

    Too late

    --
    Do you even lift?

    These aren't the 'roids you're looking for.