wasn't long, now was it?
The first new vulnerability affecting Internet Explorer on Windows XP with SP2 has been discovered
The vulnerability has been confirmed on a fully patched system with Internet Explorer 6.0 and Microsoft Windows XP SP1/SP2. Users of IE 5.5 and 5.01 are also affected.
Boy am I glad I don't use Internet Explorer!
What, you thought that SP2 would be the end of all patches? Hardly. Programmers will make mistakes or, as is most likely with this one, the architects/PMs won't spot a consequence of their design. We're human, dammit.
At some point the SP2 team had to say 'right, we're going to ship this thing' and freeze it at that point.
Since IE's security model has been heavily reviewed over the last year and numerous changes made to reduce the effects of attacks, I'm happier using IE than any competitor. The lower number of attacks targetting FireFox tells you nothing about the long-term
are interpreted in the correct zone.