Comments on: Fixes in for Windows, Microsoft e-mail flaws

Two "critical" security bugs in Windows, Outlook and Exchange could allow an attacker to hijack vulnerable PCs, company says.

HA HA HA HA HA

....it must get frustrating... really.

[aabcdefghij987654321]

Re: ....it must get frustrating... really.

That's all Microsoft using weenies know, techs and users alike. Viruses, spyware, patch patch patch.

A question for anyone reading this; Are all e-mail viruses considered Microsoft Outlook or Exchange viruses? Even the ones with built-in SMTP engines, they always use MS's address book, no? If the world stopped using Microsoft e-mail products, would mass viruses and e-mail born attacks become a bad memory? I believe it holds true for document viruses, only Microsoft Office has these issues. Therefore, FAIK all document macro viruses are correctly labeled as a Microsoft Office macro virus. If everyone stops using MS Office would MS Office macro viruses be history?

It seems to me Microsoft has introduced attack vectors to nearly every data and application type except text files. But it is rumoroed they are working on that one. ;)

No vendor out there is perfect but a convicted monopolist needs to be held accountable for its actions. If I was the judge, jury and executioner Bill Gates would be doing a few years of time behind bars.

--ABM
www.anythingbutmicrosoft.org

[clsgis]

'Bill' is not MSFT

"If the world stopped using Microsoft e-mail products, would mass viruses and e-mail born attacks become a bad memory?"

Unfortunately, no. We'd still have MS-Office macro viruses, and worms that exploit sloppily written PHP programs, and IE exploits. And some blame belongs to the snake oil salesmen who sell phony security-in-a-box. Security is a discipline, not a product.

"Bill Gates" is not the Microsoft Corporation. Conflating the two serves MSFT's propaganda effort. He's just a nerdy guy being bullied by that mean old Justice Department, you can feel sorry for him. If you mean Microsoft, please say MSFT, not "Bill." I agree he should be in prison, but I'd much prefer to see MSFT broken in at least three pieces (OS, apps, media) that aren't allowed to talk to each other in private.

[wbenton]

What is a FIX?

MS Exchange, MS Outlook and MS IE have always had flaws. And regardless of how much they patch... those same programs continue to have flaws.

Regardless of Microsoft's stance to increase the security in their applications... they've had more than enough time to prove whether they're worthy of doing that or not.

This article for one (out of millions of others) only goes to prove how false their security beef-up policy is.

They need to learn that YOU PATCH WHEN a VULNERABILITY IS FOUND!!! Not wait until it's exploited or until the next monthly patch... YOU PATCH IT ASAP!!!

Everybody else in the industry does that. Microsoft is the only exception otherwise.

And out of all the time they've had to get with it... they're still running WAY behind schedule which only proves that they can't keep up with the vulnerabilities AS They're Announced.

CRITICAL flaws are recommended to be patched within 24 hours... 72 hours latest... not held off until next month's security release!

But Microsoft has proven time and again... that they won't follow those common sense rules. It only goes to prove their ignorance of the matter and that their security statement means notta!!!

FWIW