A really interesting development this month is that HD Moore has been stockpiling browser exploits, and is intending to release one per day for the month of July... see http://browserfun.blogspot.com/ . Most will be Internet Explorer/Windows, and most will be denial of service (that is IE crashers) as opposed to code-running exploits, but here's the interesting part... just about any application crash can be turned into arbitrary code execution, if someone is determined enough to work at it. This presents Microsoft with a dilemma. They can't patch and test them all within the month, so which ones do they deal with first? And will the Bad Guys choose one, some or none, to turn into code executers? And how long will it take them?