I have seen many machines compromised. and many users saying they did not install the crap they then see.
“It’s like a little-used basement window you forgot to lock. Worse, you’d only have to read or preview an e-mail or visit a poisoned site in IE to be infected, no click required.”
Exploit code for the hole is already on the Web. Like the VML problem, this one also facilitates drive-by downloads, and the same versions of Windows are affected. Microsoft is likely to have distributed a patch by the time you read this; you can also retrieve it here.
Note that Firefox, Opera, and even IE 7 are unaffected by these holes. If you’ve been waiting for a good reason to drop IE 6, this might be it.
Adobe patched critical holes in its Macromedia Flash Player as well. Version 8.0.24 and earlier could open you up to yet another drive-by download if you simply view a doctored Flash movie. Microsoft distributed vulnerable versions with Windows XP SP1 and SP2, and with XP Pro 64-bit. Please update your FlashPlayer to 9.0.16 here
media across the board is unsafe this month, Apple patched six critical holes in all QuickTime versions prior to 7.1.3E running on Windows 2000 and XP. The popular media player has playback flaws with several file formats, including H.264 and native QuickTime movies. Update your Quicktime MAC to 7.1.3 Here Update your Quicktime WINDOWS to 7.1.3 Here
