Source: Security Focus
Microsoft has alerted the world+dog to a trio of vulns in its implementation of Java Virtual Machine. The most serious enables an attacker to gain "complete control" over a victim's system. So get patching now.
In an advisory, the company warns that the flaws to Microsoft VM, which ships as part of most versions of Windows and IE, are a critical risk to users.
I've been using Windows XP as my main desktop operating system for about a year now. I'm really very happy with it, as are most XP users I know. It's probably the best job Microsoft has ever done on a desktop OS.
However, there are some things that could have been done better. One year later--especially now that Service Pack 1 has been released--it's worth looking at what Microsoft could have done better, though I don't think any of the flaws are crucial.
Source: The Register
Keystrokes, including passwords, can be sniffed when using Windows Terminal Server or the XP remote control feature. MS has rolled a fix silently into SP1 without making any public statement on this serious problem.