As I watch the article on TS's front page slowly descend into oblivion, I decided I should link ZERT's 0day Cursor Exploit Patch. I assume all those reformatting.. er securing/resecuring their PCs may want a quick link to this.

[URL="http://zert.isotf.org/advisories/zert-2007-01.htm"]find it here[/URL]
...and a previous cursor patch [URL="http://www.microsoft.com/technet/security/Bulletin/MS05-002.mspx"]here[/URL].

While this is of understandable concern to people, I would use this as an oppertunity to once again point out the benefits of using alternative methods for what you do.

There are pretty specific conditions you'd have to fall under to get this. First and most obvious is using Internet Explorer as a web browser. The old argument of pages not working well in Firefox or Opera are long gone. Any decent site on the internet works in Firefox, some still don't work in Opera, but they are few and far between. Both browsers are extremely customizable and can be made to look like versions of IE if you need some comfort. Solution: Use an alternative browser, Firefox or Opera.

The only other real way to get caught by this exploit is through email. Most people do not need the functionality of Outlook for their personal computers. IMO the only reason Outlook surives at all is because of its strong position in the buisness/corporate sector. Solution: Use Thunderbird, Eudora or Opera for mail. (probably others too). Or in Outlook by the use of a spam filter, some common sense, and not using the preview pane.

Also may I mention it's a good idea to disallow Outlook and IE net access in your firewall control panel..