The odds are that Microsoft won't patch the Windows kernel bug next week that the Duqu remote-access Trojan exploits to plant itself on targeted PCs, a researcher said today.

"Probably not," said Andrew Storms, director of security operations at nCircle Security, when asked what chance he gave Microsoft fixing the flaw Nov. 8, this month's regular Patch Tuesday.

"I think we'll see an advisory today or tomorrow, but patching next week would really be pushing it for Microsoft," said Storms.

He based his assumption on Microsoft's apparently reactive move to news today from Symantec, which said that additional analysis showed the Duqu malware is installed after a Windows kernel bug is exploited.

"If Microsoft had information [about the vulnerability] before this, it would have been faster either patching or with an advisory," said Storms. "They're in reaction mode now, and probably working up an advisory."

Full story: PC World