The Broadband Guide
SG
search advanced

Microsoft updates "coordinated" bug program

2011-04-21 09:39 by
Tags: ,

 

Microsoft has announced new components to its Coordinated Vulnerability Disclosure program, unveiled last summer to enhance transparency around the discovery, response and handling of security flaws.

Among the updates, announced Wednesday, Microsoft released a document that describes how Microsoft responds to bugs that researchers report to the software giant. The paper also chronicles the procedures Microsoft takes when it discovers a vulnerability in a third-party product, in addition to how it helps lead coordination if a vulnerability affects multiple vendors, so to minimize end-user harm.

Also as part of its Wednesday announcement, Microsoft, for the first time, released advisories related to bugs its research team has discovered in third-party products. The holes, already fixed, affected the Google Chrome and Opera browsers.

In the document, Microsoft explains how it goes about notifying and working with impacted vendors, such as Google or Opera. It begins by reporting the issue to the vendor and asking for periodic updates, for example, an estimate for when a patch will be ready.

Read more -here-

 

  Post your review/comments
    rate:
   avg:
News Glossary of Terms FAQs Polls Cool Links SpeedGuide Teams SG Premium Services SG Gear Store
Registry Tweaks Broadband Tools Downloads/Patches Broadband Hardware SG Ports Database Security Default Passwords User Stories
Broadband Routers Wireless Firewalls / VPNs Software Hardware User Reviews
Broadband Security Editorials General User Articles Quick Reference
Broadband Forums General Discussions
Advertising Awards Link to us Server Statistics Helping SG About