Another example of security bias?
I wrote earlier about a security hole that has apparently been identified in Windows XP SP2 IE. Security software company Symantec Corp. has now issued a vulnerability alert about the hole and cited Ivgi, which also provided code proving that the hole existed. The vulnerability allows malicious attackers to bypass warnings designed to inform users when a file is being passed to their computer using a specially-crafted HTML (Hypertext Markup Language) Web document.
This is what I don’t get. Everybody seems to be rushing out to warn IE users (and probably also recommending installing a different browser). Is there a double standard here? I wrote earlier that I think there is, and for whatever reason, it appears Microsoft is being held to a HIGHER standard than other companies. That’s right, I said HIGHER standard, and I don’t think its the right thing to do for healthy competition. Why the double standard? Correct me if I’m wrong here, but wasn’t a similar download vulnerability reported in Mozilla/Firefox and most said it’s not really “a flaw”? When is a hole a hole? Did any anti-virus companies issue a “vulnerability alert” to Mozilla users?
Of course there is also an article circulating on the internet about the IE flaw and it says “Microsoft was not able to comment on the hole in time for the story”. Story? What story? Why isn’t anyone questioning Mozilla about their download flaw? I know, someone will say its not “exactly” the same. Is it a hole or not? Why do I say this. Read the recommendation from Symantec on the “flaw”.
“IE users are advised to avoid links provided by unknown or untrusted sources, to keep from being lured to a malicious Web site. IE users can also configure the browser to disable the execution of script code and active content, though doing so could have adverse effects on the way IE functions, Symantec said. “
Is this not the exact same guidance Firefox users were given? This is getting ridiculous. Again, it’s a HIGHER standard for Microsoft. All companies should be held to the same standards, not different standards. And of course, the internet article also included “The news comes just three days after Microsoft issued software patches for several serious Windows security holes and released a new tool that lets users remove malicious software from their PCs, and amid increasing competition in the Web browser market from the Mozilla Foundation’s Firefox browser.”
I’m not falling for it, and the media should reexamine its motives and intentions. How hypocritical can you get.