IE Fixes Available

Published: 2012-09-20. Last Updated: 2012-09-20 01:57:47 UTC
by Kevin Liston (Version: 1)
12 comment(s)

Hoping to put a close on Monday's IE Zero-day vulnerability (https://isc.sans.edu/diary.html?storyid=14107) Microsoft has announced the release of a FixIt (http://support.microsoft.com/kb/2757760) to address the issue, with a patch to be made available via Windows Update this friday (http://blogs.technet.com/b/msrc/archive/2012/09/19/internet-explorer-fix-it-available-now-security-update-scheduled-for-friday.aspx)

Can we look forward to more timely security patch releases from Microsoft?  That would be good news indeed.

Keywords:
12 comment(s)

Comments

More timely security patch releases ? Surely you're kidding. The 0 Day appeared on September 17th and Microsoft will have an update to address it pushed out by the 21st.
Please name one other software manufacturer that responded as quickly as MS has done in this case.
@MowGreen you seem to have injected a snarky tone into your reading of the the diary. This is the 2nd out-of-band security patch to come from Microsoft in recent memory. I see this as a good thing-- making us wait until October would not, I'm glad that they didn't.
Where is a link to download the Kb article?
I'd like to have it in my own files to use on other machines too.


@KL On the contrary, the diary appears to be criticizing Microsoft for not releasing an update for this issue in a timely manner, not me. I, too, am glad that they reacted more quickly than any other software vendor does.
@MrClarke The KB article will not be online until the update is pushed out. Updates usually come out @ 10 AM, Pacific Time.
Updates are available in Microsoft Download Center since around 17:00 CEST (UTC +0:00). It's KB2744842 (MS12-063).
I got it, MowGreen, Thanks.
BTW,
Did you used to hang out at paul laudanskys site?
CCSP?


@MowGreen as the author I have a unique insight into the intent of the phrase "Can we look forward to more timely security patch releases from Microsoft?" :-)
"more timely" is the phrase causing issues.

Does the more refer to the number of out of band patches or does more refer to the timeliness of this out of band patch?

Given the context of the state of the argument regarding out of band patches on security sites generally, I interpreted this as a hope for more out of band patches in the future, not that this out of band patch took too long to be released.
So "more timely-patches" (like this one) vs. "more-timely patches." I intended the former.

Diary Archives