Quote Originally Posted by Elysia View Post
I would also like to add that even if reviewing the code (and how do you do that anyway with so much code?), you don't realize something is broken until it breaks. Do you know how much time is spent debugging and finding out how hackers are eating their way into the system? Yes, that's right. We aren't geniuses.
So...
1) With so much code, it's very difficult to scan and sniff out every part.
2) Programmers differ in experience, so someone less experienced may scan a part of a code and miss vulnerabilities.
3) You don't know it's a vulnerability until someone utilizes it.

All of this applies to Windows Vista aswell, the only difference being that they don't have nearly as many people working on it...