Apparently Microsoft hasn’t really considered the “user” when thinking of remote exploits. The Register has an article about another exploit that could allow a local user to elevate their privileges (Secunia have the original article). I cannot count the number of times I’ve had to handle a user issue where they opened an attachment. Combine a couple of exploits, and you can make it close enough to remote that it’s dangerous. For example, we received a call from an account manager the other day that said they’d received an email saying their system was insecure, and they needed to install this patch. That same theory could be used to deploy this new issue… shesh.