This morning, a vulnerability was announced with Windows Help in Windows XP and Windows Server 2003. This afternoon (well, about 10 minutes ago), Microsoft has released a patch for the issue. That’s a pretty quick turnaround for a fix. Patch up your systems if you are affected!
We have released Security Advisory 2219475, addressing the vulnerability in the Windows Help and Support Center function in Windows XP and Windows Server 2003. We are not aware of any active attacks at this time. Customers running Windows Vista, Windows 7, Windows Server 2008 and Windows Server 2008 R2 are not vulnerable to this issue or at risk of attack.