Google Researcher Issues How-To On Attacking XP

theodp writes "A Google engineer Thursday published attack code that exploits a zero-day vulnerability in Windows XP, giving hackers a new way to hijack and infect systems with malware. But other security experts objected to the way the Google engineer disclosed the bug — just five days after it was reported to Microsoft — and said the move is more evidence of the ongoing, and increasingly public, war between the two giants."

Re:Do no evil

[commodore64_love]

Whatever it takes to damage Microsoft is okay with me. I've hated this company since the 80s - not because I randomly like to hate inanimate objects, but because Microsoft's products were 5-10 years behind what other companies like Apple, Atari, and Commodore were doing. MS == crap for a long long time.

And because Microsoft would do anything short of murder to "win" in the marketplace, such as stealing trade secrets, locking-out competitors products, or suing smaller companies in court until they went bankrupt (i.e. MS was patent trolling). It's about time MS received a dose of its own medicine.

Re:Do no evil

[casings]

If you didn't realize that windows was an insecure product, you get what you deserve.

The end users and admins punish themselves.

Re:They did no evil

[Gr8Apes]

Im sure his hotfix and one man testing matches MS's extensive testing. Seriously, do you think any company would just release this fix immediately without serious testing?

I'm sure this was tongue in cheek. I'd safely bet there's a whole lot of "one man testing" that far exceeds MS's lack of testing based on these types of stories that keep coming out about MS's lack of quality control. After all, isn't MS the company known for selling software and letting their customers beta test it?

As for MS releasing the fix? How hard is it to test something when you've been pointed to the flaw, given all the test conditions, and the fix, and it's in a relatively small piece of code? Granted, the folks that wrote it are probably long gone....