Sit tight. For those suffering malware attacks via PDF, Microsoft has informed users that the bug in Windows OS, which makes the attacks possible, hasn't yet been fixed. And the next scheduled patch release date isn't until November 13. Gotta love that. An unpatched code execution hole in Windows XP, and Windows Server 2003 with IE7, avails apps like Adobe Reader/Acrobat to serve as vectors for attack, reports ZDNet. The attacks are a combination of Trojan downloaders and rootkits, which steal data from infected computers. An advisory from Microsoft regarding the attacks was first released on October 10.