Microsoft Says IE Patch Done But Needs More Testing

Although Microsoft released a trio of security bulletins Tuesday, a fourth was notable primarily by its absence.

Security analysts had expected to see a cumulative patch for Internet Explorer among the mix this month that would address a series of vulnerabilities made public as long ago as November, 2003.

In a Webcast Wednesday, Microsoft officials said that they have created an IE patch, but that they're holding it until testing is completed.

"There are lots of complications [in IE], said Jeff Jones, senior director of Microsoft's Trustworthy Computing, including testing of multiple versions of IE -- Microsoft typically rolls out Internet Explorer patches that take care of all supported versions, including IE 5.01, 5.5, and 6.0 -- and multiple language editions.

"As soon as it's ready from quality [testing], we will release it," Jones said, even if it's before the next scheduled bulletin release of February 10.While Microsoft has implemented a monthly schedule for debuting patches, it has said previously it would occasionally post fixes off that schedule.