
Zero-day holes will have to wait...
By Joris Evers
Published: 9 March 2007 09:15 GMT
Microsoft has no new security updates planned for next Tuesday, despite at least five zero-day vulnerabilities waiting to be fixed.
In a note on its website, Microsoft said it won't release any security bulletins, yet it will release several updates that are not related to security. The second Tuesday of the month is Microsoft's scheduled patch release day.
Also on Tuesday, Microsoft will go ahead with an updated release of its Windows Malicious Software Removal Tool. The program detects and removes common malicious code placed on computers and is pushed out monthly.
The patch break could be a welcome respite for IT managers still busy testing the dozen fixes Microsoft released last month. Also, many US IT pros may be occupied with the switch to daylight saving time, which at the behest of Congress, is happening three weeks earlier this year. Many computer systems don't have that change programmed in and require patching.
Microsoft occasionally has months when it has not released security updates. The last time Microsoft did not offer security updates as part of its monthly update cycle was September 2005, the company said.
A company representative said: "Microsoft continues to investigate potential and existing vulnerabilities in an effort to help protect our customers. Creating security updates that effectively and comprehensively fix vulnerabilities is an extensive process involving a series of sequential steps."
Still, the lack of security updates also means cyber crooks have more time to exploit known security vulnerabilities. There are five known zero-day holes in Microsoft products, according to eEye Digital Security. Redmond has warned that a bug in Word is being exploited in attacks. The company has said it is working on a fix.
Joris Evers writes for CNET News.com
Skills Leveraged and Learned While In-position Increase skill sets with understanding storage technologies Increase understanding of programming ...
Good technical knowledge of basic computer errors and fixes Bug submission You can also view updated jobs on my blog http://lnk.by/ctm 3d Games ...
Main Accountabilities/Responsibilities Responsible for ensuring that support incidents are dealt with in an accurate and timely fashion Complete bug ...
Agenda Setters 2008
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Naked CIO Naked CIO: Should you monitor staff? Somebody's watching you
Elinor Mills Why 1970s hackers had 'whiz kid' status Q&A: Kevin Mitnick - blackhat hacker turned good guy