I posted yesterday on the Safari flaw (Why Apple has to fix the Safari flaw) as Apple did not acknowledge that this is a security vulnerability. Unfortunately we had now to release an advisory for this as we started to see that the bad guys could use this "feature" to attack machines – we are calling it a blended threat.

I just wanted to make sure you saw it: Microsoft Security Advisory (953818) - Blended Threat from Combined Attack Using Apple's Safari on the Windows Platform

Roger