Think you are safe with SP2 installed on your Windows XP box? Shame on you! There is no such thing as safe. Security researchers have discovered a new exploit for Microsoft Corp.'s Windows XP Service Pack 2 that allows programs to be planted and executed on fully-patched systems. The weakness is in the local security zone of Internet Explorer which allows security restrictions in the zone to be bypassed. This, in combination with a separate vulnerability, in which drag-and-drop operations permit executable content to be placed on the system, the end result is an attack that can deliver and execute hostile code on a target system.