An Inside Look Into Building and Releasing MS07-017

“Hey Folks – this is Mike Reavey. We’re all glad that MS07-017 – the Security Bulletin that fixes the vulnerability in Animated Cursor Handling – has been released, helping to block attacks on that vulnerability. While we released it within 5 days of being notified of attacks, we have received questions from customers about why it took us 3 months to develop and release the fix for this vulnerability. I wanted to provide some insight into the history of this vulnerability, and while doing so, hopefully provide insight into the overall security update lifecycle, including testing, which consumes the greatest amount of time.”

16 Comments

  1. 2007-04-04 9:55 pm
  2. 2007-04-04 10:02 pm
    • 2007-04-04 10:39 pm
  3. 2007-04-04 10:14 pm
  4. 2007-04-05 1:32 am
    • 2007-04-05 2:08 am
      • 2007-04-05 2:23 am
        • 2007-04-05 5:25 am
          • 2007-04-05 8:21 am
    • 2007-04-05 3:10 am
      • 2007-04-05 7:07 am
      • 2007-04-05 3:20 pm
    • 2007-04-05 3:30 pm
  5. 2007-04-05 8:26 am
    • 2007-04-05 6:05 pm
  6. 2007-04-05 12:44 pm