Microsoft Security issued a patch today for a critical vulnerability affecting all supported editions of Windows 2000, Windows XP, Windows Vista, Microsoft Office 2003, and the 2007 Microsoft Office System. The hole is in Microsoft XML Core Services and could allow remote code execution if a user viewed a malicious Web page using Internet Explorer. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Visit the Microsoft Subnet home page for more news, blogs, podcasts.