Microsoft has responsed to Positive Technologies’s claims that it had found vulnerabilities in XP SP2 and does not believe that the issue reported is a vulnerability (see our intial story in the January archive. According to Microsoft, an attacker cannot use the method to run malicious code and users are not at risk. Nevertheless, they also indicated that they would continue to modify the technology and would look at ways to prevent the issue.
