Skip to content


Hacker Poll: Should Google Have Disclosed the the Latest Internet Explorer Flaw Before Microsoft Had a Patch?

Internet Explorer logo 150x150 Google employee Michael Zalewski disclosed a CSS security issue in Internet Explorer today before Microsoft had issued a fix. This is the second time a Google employee has disclosed an IE security flaw to the public before a patch had been issued. Chris Evans posted a cross-site scripting issue to Seclists in September, according to Ars Technica.

The new flaw may also have been reported by two Chinese researchers at a security conference in South Korea according to KrebsonSecurity. Microsoft does not know of any exploits in the wild actually taking advantage of this vulnerability.

Should Google have disclosed these bugs to the public, or waited for Microsoft to issue a fix first?

Sponsor


Discuss


Posted in General, Technology, Web.

Tagged with .


0 Responses

Stay in touch with the conversation, subscribe to the RSS feed for comments on this post.



Some HTML is OK

or, reply to this post via trackback.