IE 7 was released today and within seconds there was a vulnerability released by Secunia. There are two sides to this…
First, heads are going to roll at Microsoft I would have thought because of all of the ‘we waited forever to get all of this out of the door to make sure it was secure’ hype we have had from them for a while. The last thing they need prior to the release of Vista, which incidentally does not suffer the vulnerability with IE7, is what will undoubtedly become a high profile vulnerability on the day IE7 shipped.
The other side, which makes me sick in some ways… I would bet my left teste that Secunia knew about this vulnerability during the beta and yet, rather than disclose it to Microsoft, as technically they should if they were using the beta, they waited until minutes after the release was announced to tell the world. What does Secunia stand to gain in undermining Microsoft’s security reputation, like it needed undermining in the first place.
I don’t know… You tell me.