We have been getting some bad press over a bug which affects the Vector Markup Language in IE 5 and IE6 (but not IE7). Over on the Security Response Center Blog there are several posts about it. There were attacks based on the vulnerability (though very few), so we published a workaround and then released the patch ahead of schedule. The blog has details of release; it is already live on Windows update, or you can go here to download it directly.
Interesting footnote. The BBC have covered this story top of list of links they have is the MSRC blog… shows how blogs are becoming seen as authoritative