Quote:
Originally Posted by Polarbear1955
In real life when there is such an obvious "bug" in your software and you do not fix it the reason is you put it there deliberately.
Right, the team that designed the terrible protocol 10 or more years ago just knew that there would be exploits available in Adobe Air, and that the UI team would leave Air in place long after it went out of support. Or even better, they got the word from upper management to make sure the protocol could be exploited, and they would receive nice rewards year after year for keeping their mouths shut. As would anyone else who joined the team.
I worked on products where the protocol was found to have security vulnerabilities after it had been shipped and set in stone (also a design flaw). With a big client base and product infrastructure around such a protocol, it can be a massive (expensive) engineering process to fix.
Your assertion needs a lot of evidence to prove malice, where there is demonstrated incompetence.