A recently discovered flaw in Windows XP puts millions of users at risk. According to this article (courtesy of Jen), hovering your mouse pointer over an MP3 or Windows Media file's icon could cause it to execute malicious code that's been stuffed into the custom attribute data.
This is a golden opportunity for the RIAA to start seeding the P2P networks with trojaned MP3 files. Fortunately, though, there's a patch for the vulnerability.
Will Microsoft's programmers ever learn to handle buffer-overflow conditions?