Meant to put this out yesterday to y'all, but ran out of time. Yesterday, Microsoft released their monthly battery of security updates, and one of them is fairly ciritical. The exploit of this vulnerability would allow anonymous users to be able to run anonymous code, and according to Microsoft, there is already exploit code available. I figure it's only a matter of time before that code becomes automated and results in a nasty virus. So if you run a moderm Windows operating system (Windows 2000, XP, or Windows Server 2003), do yourself a favor an get to Microsoft Update and apply the security updates -- specifically MS06-040 (KB921883). If you are system admin, start testing with WSUS/SMS/manual technologies, and get this to your clients.