Microsoft Corp. yesterday said it plans to issue a software update on Tuesday to fix a dangerous security flaw in its Windows operating system -- a flaw that cyber criminals are actively targeting to gain access to computers across the Internet. The update will come a week in advance of Microsoft's official patch release schedule, which typically falls on the second Tuesday of each month.
Windows users are strongly encouraged to install the patch, because the .ani flaw can be used to exploit computers running virtually any version of Windows, including Vista, even if they are running non-Microsoft browsers like Firefox and Opera, Mulchandani said.
I should add a PS to this, and say that I'm not sure the above statement is correct. Comments to the Washington Post article seem to contradict it.
[edited by: Robert_Charlton at 7:51 am (utc) on April 4, 2007]