Microsoft have announced a vulnerability in Microsoft Video ActiveX Control that allows remote code execution. This is reported to affect versions of Windows XP and Window Server 2003.
CCIP is bringing this to your attention as this vulnerability has been reported as being actively exploited in the wild.
Administrators are advised to take the following mitigation steps immediately.
There is currently no patch to correct this issue. However you can set the kill-bit to mitigate this vulnerability.
Microsoft have provided a way to automatically implement the workaround by following the instructions under "Fix It For Me" in the following Knowledge Base article: http://support.microsoft.com/kb/972890
Alternatively the following quoted text can be included in a .REG file and imported into your registry.
Windows Registry Editor Version 5.00