Content Management Matters ™

Sit tight. For those suffering malware attacks via PDF, Microsoft has informed users that the bug in Windows OS, which makes the attacks possible, hasn't yet been fixed.

And the next scheduled patch release date isn't until November 13. Gotta love that.

An unpatched code execution hole in Windows XP, and Windows Server 2003 with IE7, avails apps like Adobe Reader/Acrobat to serve as vectors for attack, reports ZDNet.

The attacks are a combination of Trojan downloaders and rootkits, which steal data from infected computers.

An advisory from Microsoft regarding the attacks was first released on October 10.

Apparently Microsoft Content Management Server (MCMS) comes stock with some bugs. While that will probably not surprise most cheeky PC-cum-Mac-users, these particular vulnerabilities can be exploited by hackers to initiate cross-site scripting attacks or otherwise compromise a system lacking adequate protection.

In essence, the bugs bring compromised systems back to the pre-malware days.