Oracle And Microsoft : A Tale Of Two Security Philosophies

"No one would confuse Microsoft with Oracle. The two software juggernauts have carved out distinctly different markets. So it's not surprising that the companies have differing policies on releasing information about security vulnerabilities." writes Edward Hurley in this searchsecurity.com article. "Microsoft tends to release more technical details about its vulnerabilities and put out patches faster. Oracle, on the other hand, is intentionally less specific with its advisories. The company also has to wait sometimes to prepare all the patches because its products run on a host of platforms."