August 11th, 2010, 18:56 PM
Microsoft's 30-day forecast: Stormy exploits expected
Microsoft on Tuesday warned customers that a record number of just-patched bugs will probably be exploited in the next 30 days.
Of the 35 vulnerabilities that Microsoft has patched this month, it assigned 32 an exploitability rating, a score that quantifies the company's take on whether reliable attack code will appear. Of the 32 bugs, a record 18 were pegged with a rating of "1," which in Microsoft's methodology means it anticipates reliable exploit code in the coming month.
Microsoft also assigned nine of Tuesday's 14 security updates the same "1" exploitability rating.
Engineers with the Microsoft Security Response Center (MSRC) published a table Tuesday that spelled out their take on exploit likelihood. According to the MSRC, exploit code for five of the eight security updates labeled "critical" and four of the six pegged as "important" will probably pop up in the next 30 days.
Full story: Computerworld