1) Apparently the Windows .ani bugs weren't completely fixed, and even manages to evade all the protections built into Vista. I feel sorta bad for whoever screwed this up because I'm sure they're getting plenty of criticism already, but it's pretty surprising to me that the entire module wasn't reviewed when the last exploit came out. Maybe it's naive of me (maybe there's a lot of code to review?) but you'd think you could at least check all values that come in from an external file to be sure they're the size you expect.
(The Metasploit blog goes into detail on this can exploit Vista.)
var nop = unescape("%u9090%u9090");
Every time I ask security people about the state of the world, they tell me it's getting worse and that the only answer is to not use a computer. :(