Microsoft has released their monthly security fix addressing a number of issues in both XP and Office. Some had already been publicly exploited; however Microsoft claim the patch will fix other security holes that were previously undiscovered.
Monty Ijzerman, senior manager at Mcafee's Avert Labs, made this statement:
"Today, Microsoft patched 23 vulnerabilities, the highest number since their monthly patch programme started. Eleven of the patched vulnerabilities were already publicly known or exploited in the wild. One of them, the Server Service vulnerability, can be remotely exploited without the need for any action on the victim's side, thus making it a worm candidate.""
Of those 23, 11 were already publicly known. This patch was not definitive however, with some problems, such as the "mailslot" bug, still without a fix. If you want a look at the Microsoft August security bulletin for all the details then you can check it out here
In other Microsoft related news Steve Jobs has continued his criticism of the rival company. This blog
quotes Jobs as saying:
"You know, our friends up north spend over $5 billion a year on R&D and yet these days all they seem to do is try to copy Google and Apple. I guess it's a good example of how money isn't everything."
In fact Microsoft's research and development is far more expensive, spending roughly $2 billion a year more on average than the quoted figure. However, Jobs attack on Microsoft seems unjustified; surely the research development projects that Microsoft is funding will pave the way for the future. The fact that the results don't appear instantly surely doesn't make Microsoft's research team redundant?
What do you make of Jobs comments regarding Microsoft? Do you have any thoughts on Microsofts monthly updated security policy? Let us know in the forums