I read about this, but I obviously never got around to it.

So the basic understanding that the government have been working with Microsoft to define a standard build for Windows XP, that is more hardened and secured.

Some of the specific information is abit patchy, but I imagine the build is just fully patched, disabled services and ports etc.

The Reg posted more info here.

I have stumbled across the excellent site of Audit Experts.

They have posted some information on a free PCI Self Assessment Tool, using a combination of OpenSource kit.

I highly recommend you take a look if your working in an environment working towards PCI compliance.

As previously communicated, a new vulnerability was found in the recently patched Adobe Reader 9.1, and now Adobe has released a new 9.1.1 update to resolve this issue.

Download the Update Here

Vulnerability identifier: APSB09-06

CVE number: CVE-2009-1492, CVE-2009-1493

Platform: All Platforms

Summary

A critical vulnerability has been identified in Adobe Reader 9.1 and Acrobat 9.1 and earlier versions. This vulnerability (CVE-2009-1492) would cause the application to crash and could potentially allow an attacker to take control of the affected system.  A second vulnerability has also been reported that appears to affect Adobe Reader for UNIX only (CVE-2009-1493).

Adobe recommends users of Adobe Reader 9.1 and Acrobat 9.1 and earlier versions update to Adobe Reader 9.1.1 and Acrobat 9.1.1. Adobe recommends users of Acrobat 8 update to Acrobat 8.1.5, and users of Acrobat 7 update to Acrobat 7.1.2. For Adobe Reader users who can’t update to Adobe Reader 9.1.1, Adobe has provided the Adobe Reader 8.1.5 and Adobe Reader 7.1.2 updates.

Affected software versions

Adobe Reader 9.1 and earlier versions.
Adobe Acrobat Standard, Pro, and Pro Extended 9.1 and earlier versions.