On a Microsoft security Webcast held Wednesday, participants were more interested in the whereabouts of a patch for a known Internet Explorer spoofing vulnerability than they were in the three new security bulletins that Microsoft released Tuesday. Microsoft's been working on the IE patch since before Christmas, and it is done.
But all the different permutations and combinations (Longhorn evangelist Robert Scoble says there are at least 400 of them) have not yet been thoroughly tested, officials said Wednesday. Once that happens, even if it's sooner than the next big security-patch dump, Microsoft will roll it out, officials said.
News source: MS-Watch