Alas the FBI top 10 Windows vulnerabilities :(

Given the current round of MyDoom virus attacks I've been reading up on what people think of Windows Security and Email (I was the email lead on working out what to do with what became Windows XP SP2)  Dana posted an interesting write up on Windows Script Host (something I was responsible for in a dim and not that distant past)   Dana has a good point that the security features in WSH aren't particularly well understood.  I wrote an article ages ago that tried to demystify what's there.  Hopefully the FBI will take WSH off the list and I can sleep easier at night.