Microsoft 11806 Published by

Microsoft has slammed Google for publishing a security vulnerability in Windows 8.1, saying it was just days out from a fix and the disclosure was a "gotcha", instead of protecting customers.



From Neowin:
Senior Director of the Microsoft Security Response Center, Chris Betz, said in a blog post that Google knew Microsoft had a fix in the pipeline and was due to be released on "Patch Tuesday", however, Google went ahead with the disclosure just two days out, despite being asked not to do so.

In a post published on Google's security research site earlier, a researcher disclosed the vulnerability and how to execute the flaw. The vulnerability allows for an elevation of privilege in Windows 8.1, an example application was also included that could launch calc.exe using the method.
  Microsoft slams Google for publishing a security vulnerability in Windows 8.1