Microsoft's newest bugs: one real, one fake

Perhaps the lawyers can relax, but Microsoft's security team is working overtime again. The newest Internet Explorer bug can allow a malicious web site to steal control of an end user's desktop by overloading registers through ActiveX code. A patch is probably weeks away, private researchers said. Meanwhile, a new spam message is calling itself Microsoft Security Bulletin MS05-039, and claims to install worm patches. The message is actual a Trojan and isn't detected by most anti-virus programs, experts said.

For more about the attacks:
- read the InfoWorld article
- and also read this article