It was not too long ago that Google did annoy Microsoft somewhat by publishing details surrounding a vulnerability in Windows prior to the patch being published. Basically, Microsoft figured out that it would be in good taste for Google to withhold such information for a couple of days, as there is already a scheduled patch arriving then to fix those vulnerabilities. It is all a matter of perspective, really, and it has divided opinion right down the middle to boot. Well, history looks to have repeated itself as Google Security Research has shown off two more security holes which has yet to receive a fix from Microsoft.
In one of the issues, it would affect Windows 7 as well as Windows 8, while the other is considered to be the less serious among the two, affecting the older Windows 7 operating system only. The latter security vulnerability is not exactly all that serious to look into in the first place, but with the one affecting the CryptProtectMemory function, it could end up with user data becoming exposed should it fail to be encrypted in the proper manner.
Should Microsoft be willing to be flexible and release a fix outside of the regular schedule, users will obviously be exposed to this issue – at least until the next Patch Tuesday arrives next month – which might be too long for some to wait.
Filed in . Read more about Google and Microsoft. Source: betanews