Web browser 'windows of exposure' shrink

Web browser makers are getting quicker at patching vulnerabilities, according to antivirus vendor Symantec's latest global security report.

The average time between the release of malicious code that targets Web browsers and patches, dubbed the "window of exposure", was smaller for most vendors during the first half of 2006 compared with the last half of 2005, Symantec reported on Monday.

During the window of exposure, hackers can attack a system through the Web browser. System administrators and individuals instead have to use workarounds and best practices to reduce the risk of a successful hack.

Microsoft's Internet Explorer (IE) has the longest average window of exposure at nine days, according to Symantec. This is a big drop from an average of 25 days in the last half of 2005.

IE has been beset by numerous problems over the years, including its most recent flaw in the way IE 6 handles graphics. An official patch is still not available for this problem.

Compared with its own performance last year, Apple Safari has got worse. The average window of exposure increased from 0 days from July to December 2005, to 5 days in the first six months of this year. This statistic may have been affected by the spate of vulnerabilities disclosed in OS X early this year, which included Safari flaws.

Mozilla Firefox has also performed worse, dropping from an average window of exposure of minus two days to plus one day.

Opera has been particularly successful in shrinking its window of exposure, dropping from 18 days last year to 2 days this year.

"Exploit code for enterprise-vendor vulnerabilities is still being released quickly, forcing administrators to respond rapidly despite a lack of vendor-supplied remediation," said the Symantec report.

"However, the decreasing patch development time indicates that enterprise vendors are responding more quickly to vulnerabilities. Despite this, it is critical that organisations follow up with installation of patches."

Tom Espiner of ZDNet UK reported from London.

Advertisement

Print feature brought to you by Hewlett Packard

Talkback 1 comments

    firefox gameAnonymous -- 26/09/06

    Have you ever thought about challenging browsers face to face? Now you can do it. Firetron 0.1 is new Firefox game – Try it! More information on: http://www.miscproject.com/blog/firefox-game-firetron/


Latest Videos

Blogs

  • David Braue Will Rudd's bush backhaul bonanza deliver?
    Rural areas will be welcoming the government's decision to put its money where its politicising is, funnelling $250m into a regional fibre upgrade to six rural centres. Remedying over a decade of near-neglect at the hands of telecoms privatisation, the investment could be the firmest step yet for Labor's NBN dream — but with inevitable political questions and a looming election, Rudd and Conroy need to deliver, and quickly, to preserve the NBN's credibility.
  • Array Doing for AV what VoIP did for telephony
    Sydney-based start-up Audinate is making traditional analog cabling obsolete in favour of TCP/IP-based networking technology. And it's doing a pretty good job so far, with its technology used by World Youth Day and the Sydney Opera House.
  • Array WiMax in Australia: Part two
    WiMax could be the standard that drives the next phase of mobile broadband, it provides an opportunity for players wanting to establish a pure IP network to carry voice and data effectively — but is this what operators want?
  • More blogs »

Tags

  1. 467 articles are tagged with 3g
  2. 5 articles are tagged with 3g s
  3. 7 articles are tagged with 3gs
  4. 430 articles are tagged with accc
  5. 72 articles are tagged with act
  6. 22 articles are tagged with anao
  7. 1250 articles are tagged with apple
  8. 129 articles are tagged with ato
  9. 35 articles are tagged with audit
  10. 18 articles are tagged with backhaul
  11. 18 articles are tagged with basslink
  12. 1260 articles are tagged with broadband
  13. 194 articles are tagged with budget
  14. 8 articles are tagged with cenitex
  15. 202 articles are tagged with ceo
  16. 52 articles are tagged with cepu
  17. 638 articles are tagged with cio
  18. 188 articles are tagged with conroy
  19. 117 articles are tagged with contract
  20. 20 articles are tagged with david thodey
  21. 50 articles are tagged with e-health
  22. 1017 articles are tagged with google
  23. 968 articles are tagged with government
  24. 764 articles are tagged with hp
  25. 1271 articles are tagged with ibm
  26. 179 articles are tagged with iinet
  27. 331 articles are tagged with iphone
  28. 267 articles are tagged with isp
  29. 1418 articles are tagged with microsoft
  30. 32 articles are tagged with minchin
  31. 1097 articles are tagged with mobile
  32. 324 articles are tagged with mobile phone
  33. 144 articles are tagged with national broadband network
  34. 255 articles are tagged with nbn
  35. 175 articles are tagged with nsw
  36. 835 articles are tagged with optus
  37. 141 articles are tagged with police
  38. 149 articles are tagged with queensland
  39. 10 articles are tagged with racism
  40. 138 articles are tagged with smartphone
  41. 1270 articles are tagged with software
  42. 134 articles are tagged with stephen conroy
  43. 159 articles are tagged with sydney
  44. 89 articles are tagged with tasmania
  45. 216 articles are tagged with telco
  46. 2271 articles are tagged with telstra
  47. 97 articles are tagged with union
  48. 150 articles are tagged with victoria
  49. 312 articles are tagged with vodafone
  50. 69 articles are tagged with windows 7

Back to top

Featured