Google Discloses Bug In Microsoft Edge Browsers
google

Google Revealed Another Security Vulnerability In Microsoft Edge

Microsoft failed to provide the mitigation for the flaw in 90 days

https://dk2dyle8k4h9a.cloudfront.net/Google Revealed Another Security Vulnerability In Microsoft Edge

Google once again publicly discloses a security vulnerability in the Microsoft's product. Both the tech giants share quite a history when it comes to the security vulnerability disclosure. Microsoft and Google are in the continuous rivalry for last 10 years by pointing out the flaws in each other’s software. This time, the search giant has publicly disclosed a flaw in the Microsoft Edge before the patch is ready. However, the Software maker was given 90 days to provide the fix with an additional 14-day grace by Google before going public.

The flaw was first spotted by the Google researchers back in November and the company quickly contacted Microsoft. Google asked Microsoft to fix the issue and deliver the patch within 90 days following its security vulnerability disclosure policy. However, Microsoft was unable to complete the task as the bug was much more complex than it expected. Opposite to its usual behavior, Google provided another 14- day grace to the software maker, but still there was no patch from Microsoft. The Google researcher who spotted the bug has noted that due to the complexity of the bug there is no fixed date yet for the patch from Microsoft. This disclosure will surely heat up the existing competitive relation between both the companies.

The security vulnerability disclosure is a practice to find out the flaws in the available software. Where the vendors and developers wait until the patch is available before going public about the flaw. Conversely, the third parties or researchers whose system or data may be at risk, prefers to disclose it publicly sooner. Back in 2016, Microsoft spotted a Chrome flaw and disclosed it to Google for preparing the patch in the available time. While understanding the Microsoft's struggle with the patch, Google gave extra 14 days with rare exception to its 90-days policy. But, the search giant finally went public after Microsoft fails to meet up the target. Google also gave this exception to the Meltdown and Spectre vulnerability, after the researchers have found the flaw, the company waited six months before sharing it publicly.

Google and Microsoft have a different approach to the security vulnerability disclosure. The search giant believes in the strict policy of providing a patch for the flaw in the limited time or facing the public disclosure. On the contrary, Microsoft intends to avoid the public disclosure and wait for the mitigation or patch to be delivered.

Akash Singh Chauhan
Written By
Akash Singh Chauhan

Akash Singh Chauhan is a senior writer at MobileAppDaily and he mainly covers all the latest happenings and tweaks in mobile app technology. Being an Engineering graduate he is always compelled to the technology and tries to discover new trends in the tech world. Along with any tech news he also never misses a single episode of ‘Dragon Ball’.

Top Companies

InMobi
Singapore
Dot Com Infoway
New York, USA
M&C Saatchi Mobile
New York City, USA
Techmagnate
New Delhi, India
Fetch
London, UK
View full report

Latest Articles

Join our global community 135K Followers
google

YouTube is All Set For The Big Screen With its Dedicated TV Apps Coming Soon to Apple TV, Smart TVs and More

James Lawson 4 min read  

Google’s latest update for YouTube extends its streaming services to the big screen with YouTube TV for Apple TV, smart TVs and more. The dedicated and optimized experience for the big screen is making the headlines as the latest technology trend for its latest YouTube update will soon be avai

google

Google Pixel 3 XL Rumours, Leaks And Release Date

Vikram Khajuria 4 min read  

Google launched Pixel and Pixel XL back in 2016 as the company’s own first ever flagship smartphones. The pure Android high-end smartphones took the mobile industry by the storm with its performance. After that in 2017, the tech giant launched the upgraded versions Pixel 2 and Pixel 2 XL that

google

Gmail Data Access To App Developers? Google Clarifies

Vikram Khajuria 4 min read  

Yesterday, a report by “The Wall Street Journal” fired a storm about the privacy concerns for the Gmail users. The report exposed how Gmail was offering the freedom to third-party apps and app developers to scan the inboxes of millions of Gmail users.The multinational technology comp

google

Google G Suite Gets New Security, Messaging And Other Tools Including AI Assistance

Vikram Khajuria 4 min read  

Google has announced new tools and capabilities for G Suite to improve productivity and accuracy. In last one year, the tech giant has already added almost 300 new capabilities to G suite. Now, it will be adding more tools that feature some tools powered by AI for the users. The Mountain View c