On May 7, 2012, at 5:10 PM, Richard Pieri wrote: > > Apple isn't even making the attempt.
https://discussions.apple.com/thread/3715366 This has been known for THREE MONTHS. Admittedly, the place posted isn't monitored for bug reports and such. But three months and nobody at Apple raised a red flag? Or was ignored if they did? Sure, Microsoft has a poor long-term security record with NT. The last few years, however, have shown a marked improvement both in Microsoft's development practices and their response to vulnerabilities. Microsoft takes security and security vulnerabilities seriously these days. Severe enough threats get a near-immediately published workaround/temporary fix along with a permanent patch fix either ASAP or on the next Patch Tuesday depending on the severity and scope of the vulnerability. Apple has been completely silent on this matter. This is par for the course for Apple, which was identically silent over Flashback and previous OS X vulnerabilities. Nobody outside Apple knows what's being done to fix this or even if anything is being done to fix it. That is dangerous. --Rich P. _______________________________________________ Discuss mailing list [email protected] http://lists.blu.org/mailman/listinfo/discuss
