Customer pressure persuaded Microsoft to release a patch early for a flaw in its Windows Metafile (WMF).
The patch was made available last Thursday to Enterprise customers using Windows Server Update Services instead of being released as normal on a Tuesday as part of a series of scheduled monthly updates.
Microsoft had been under mounting pressure from users and security analysts following a number of attacks via different methods targeting the flaw, which became more numerous over the past few days.
By submitting your email address, you agree to receive emails regarding relevant topic offers from TechTarget and its partners. You can withdraw your consent at any time. Contact TechTarget at 275 Grove Street, Newton, MA.
The company said it continued to monitor data, which indicated that the attacks exploiting the vulnerability were limited. Microsoft said it released the patch early because the testing had been finished, saying it was the fastest it had produced and tested an update.
Users and security analysts both said they were encouraged by Microsoft's decision to break from its usual patch schedule because of the severity of the vulnerability, but warned that the problem highlighted the need for firms to have a security strategy that is not simply dependent
on a software producer's ability to get patches out quickly.
The good news is that Microsoft jumped out of its usual patch cycle. The bad news is that its products are still flawed enough to need one.