Animated cursor zero-day
A zero-day vulnerability in Windows animated-cursor handling has been actively exploited since late March. Microsoft shipped MS07-017 out of cycle on 3 April.
VML zero-day in Internet Explorer
A zero-day vulnerability in Internet Explorer's Vector Markup Language handling is being actively exploited. Microsoft has yet to ship a patch; specific operational responses are urgent.
WMF zero-day in the holiday week
A zero-day vulnerability in the Windows Metafile format was disclosed on 28 December. The vulnerability is being actively exploited; Microsoft has yet to ship a patch.