Microsoft may not have hustled as fast as researchers thought when the
company patched a zero-day bug in Internet Explorer (IE) just 18 days after
exploit code went public.
According to VeriSign iDefense, Microsoft had information about the browser
bug nearly six months before the researcher dubbed "K4mr4n" posted attack code
to the Bugtraq security mailing list on Nov. 20.