News
News
8/9/2006
05:44 PM
50%
50%

Microsoft Breaks Patch Records

Microsoft has already put out as many critical alerts this year as it did in 2004 and 2005 combined--and the year isn't anywhere near over.

Microsoft has patched almost as many critical vulnerabilities in the first 8 months of 2006 as it did in 2004 and 2005 combined, security researchers said Wednesday.

"2006 already is a record year," said Jonathan Bitle, product manager with security company Qualys. "It's great that we're finding them prior to large-scale attacks, but at the same time it's a concern about the quality of [Microsoft's] code."

Thus far this year, there have been 51 security bulletins and 98 patches, 64 of which were deemed critical.

McAfee also noted the large number of critical patches released this year. In a blog entry, McAfee's Monty Ijzerman posted graphs that showed the rapid climb of critical fixes in 2006. However, "the number of important vulnerabilities has not changed," Ijzerman wrote.

Microsoft has released repairs for 64 critical vulnerabilities in 2006, with two-thirds of them --41 total -- coming in just the last three months. That tally easily exceeds that of either 2004 or 2005, and only narrowly misses matching the 2004-2005 total of 65.

The year's critical count is 72 percent higher than 2005, when Microsoft issued just 37 critical patches, and more than double 2004's 28 fixes.

And no end is in sight. "I think we'll see another large release from Microsoft next month. Last month was the browser-based vulnerability month, but in Tuesday's MS06-042 bulletin, there were only 8 IE patches," Bitle said. "Expect more in September."

Comment  | 
Print  | 
More Insights
Register for InformationWeek Newsletters
White Papers
Current Issue
InformationWeek Tech Digest, Dec. 9, 2014
Apps will make or break the tablet as a work device, but don't shortchange critical factors related to hardware, security, peripherals, and integration.
Video
Slideshows
Twitter Feed
InformationWeek Radio
Archived InformationWeek Radio
Join us for a roundup of the top stories on InformationWeek.com for the week of December 14, 2014. Be here for the show and for the incredible Friday Afternoon Conversation that runs beside the program.
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.