A Google security engineer accused Microsoft of treating outside researchers with “great hostility” just days before posting details of an unpatched vulnerability in Windows that could be used to crash PCs or gain additional access rights. Microsoft acknowledged the vulnerability late Wednesday. “We are aware of claims regarding a potential issue affecting Microsoft Windows and are investigating,” said Dustin Childs, a spokesman for the company’s security response group, in an email. “We have not detected any attacks against this issue, but will take appropriate action to protect our customers.” Childs declined to answer additional questions, including whether Microsoft had been aware of the vulnerability before it surfaced on the Full Disclosure security mailing list May 17, or when it would release a patch.
