Submission + - New Windows XP Zero-Day Under Attack (securityweek.com) 1
Microsoft described the issue as an elevation of privilege vulnerability that allows an attacker to run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full administrative rights.