Proof-of-concept exploit code has also been released for vulnerabilities in MS05-038, which includes several new security holes that allow remote code execution. Microsoft has fixed a corrupted patch for MS05-038, which delayed repairs for some users of the Microsoft Download Center (download.microsoft.com).
The Internet Storm Center reports that exploit code is also circulating for weaknesses in Windows code for Internet telephony (MS05-040) and print spooling (MS05-043).
In its updated advisory, Microsoft said it is “disappointed that certain security researchers have breached the commonly accepted industry practice of withholding vulnerability data so close to update release and have published exploit code, potentially harming computer users.”