Oracle is getting more attention. There are some really sharp people credited with finding some of these vulnerabilities.

Because a patch will not be available until January 10, 2006, there is a seven day window that attackers could exploit this issue in a potentially widespread and serious fashion. People should be very cautious about the Web sites they visit and the e-mails they receive over the next week.

It's a problem that there's no known solution from Microsoft.

It happens all the time.

It's real estate to (virus writers), and it's really valuable real estate.

really insidious because once you've visited the sites, you won't know you've been broken into.