Microsoft has already put out as many critical alerts this year as it did in 2004 and 2005 combined--and the year isn't anywhere near over.
Microsoft has patched almost as many critical vulnerabilities in the first 8 months of 2006 as it did in 2004 and 2005 combined, security researchers said Wednesday.
"2006 already is a record year," said Jonathan Bitle, product manager with security company Qualys. "It's great that we're finding them prior to large-scale attacks, but at the same time it's a concern about the quality of [Microsoft's] code."
Thus far this year, there have been 51 security bulletins and 98 patches, 64 of which were deemed critical.
McAfee also noted the large number of critical patches released this year. In a blog entry, McAfee's Monty Ijzerman posted graphs that showed the rapid climb of critical fixes in 2006. However, "the number of important vulnerabilities has not changed," Ijzerman wrote.
Microsoft has released repairs for 64 critical vulnerabilities in 2006, with two-thirds of them --41 total -- coming in just the last three months. That tally easily exceeds that of either 2004 or 2005, and only narrowly misses matching the 2004-2005 total of 65.
The year's critical count is 72 percent higher than 2005, when Microsoft issued just 37 critical patches, and more than double 2004's 28 fixes.
And no end is in sight. "I think we'll see another large release from Microsoft next month. Last month was the browser-based vulnerability month, but in Tuesday's MS06-042 bulletin, there were only 8 IE patches," Bitle said. "Expect more in September."
5 Top Federal Initiatives For 2015As InformationWeek Government readers were busy firming up their fiscal year 2015 budgets, we asked them to rate more than 30 IT initiatives in terms of importance and current leadership focus. No surprise, among more than 30 options, security is No. 1. After that, things get less predictable.
Join us for a roundup of the top stories on InformationWeek.com for the week of December 14, 2014. Be here for the show and for the incredible Friday Afternoon Conversation that runs beside the program.