If i was in this position to argue/discuss and microsoft was using number of vulnerabilies as a track record for "secureness" then lets not do this whole 3 year thing, lets go back to the beginning. I say count all vulnerabilities ever publicly released, "what" you say? you dont like the idea because why? because internet explorer has been out way longer than firefox, well then I say, your webbroswer "SHOULD" be more secure anyway, ..... but unfortunatly its not :p, and counting publicly released vulnerabilities in a time frame means nothing, what if i found 20 exploitable vulnerabilities in IE and never told anyone about them ;) seems more dangerous to me :p

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/newsbriefs/637/2289#2289