Microsoft's ingenuity at engineering enormous security holes into the most innocuous-seeming operations never ceases to amaze me. What particularly impresses me, though is not the cleverness or subtlety of the flaw - it's a simple buffer overrun, guys, nothing elaborate - but the fact they were able to allow this flaw to be exploited by playing a MIDI file. Wow.

Microsoft: What do you want to blow today?