EEye Digital Security said it's found the first Office 2007 remote code vulnerability and has alerted Microsoft's bug team. Users of Microsoft's Office productivity suites -- going as far back as Office 2000 and including the more recent Office 2003 -- have confronted a flood of flaws in the last 14 months. During 2006, Microsoft unveiled 13 security updates for Office 2000 and 11 for Office 2003; in the first two months of 2007, it's rolled out four bulletins for Office 2000 and six for Office 2003. The new Microsoft Office 2007 and Windows Vista are the first products that went through what they called a Security Development Lifecycle. This bug should not have been there. This bug just shows everyone that Microsoft has a trend of retailing products that has bugs in it and will run patches after patches of updates before it can be considered safe.
Comment Preview