Discussion in 'Article Discussion' started by CardJoe, 16 Apr 2009.
I wouldn't necessarily agree that being open source means they are more likely to find exploits. Often it is easier to find an exploit when you can't see the code the original author wrote, because normally when you see the code you know what they were thinking and trying to do. This can limit your thinking of how you can possibly exploit it. If you're just looking at the disassembled version you have far less of an idea what the code "should do"and much more of an idea what it does do. Of course having the source code can be useful also.
If you add in the active X ones to IE's score, IE has nigh-on 400. That puts the munber of vulnerabilities roughly in line with usage. IE would be a bit high, as would Opera.
I'm certian IE has more unpatched flaws than Firefox, they are just harder to find.
Separate names with a comma.