It is no secret that Microsoft Windows isn’t perfect, and thanks to the massive install base it is a huge target. Usually the individuals who seek vulnerabilities in Windows and exploit them are criminals looking to steal financial information or other sensitive data which they can sell for profit. Now Google is among their ranks and has begun regularly publishing malicious code for some unclear reason.
Google even contacted Microsoft and notified them of the code issue and Microsoft has developed a fix, although the rollout of the fix was delayed because of compatibility issues. Originally the fix was slated to be released in the January patch Tuesday, but it was delayed to February because of issues Microsoft found with the fix. Google states they will wait 90 days before releasing the code to the public, and Google does more than just mention the bug exists, they make code available for download which anyone could get and use to exploit this bug. It is crazy Google believes this is an acceptable practice especially after they refuse to patch issues in their own Android code.Further reading: Google, Microsoft, Security