In fact, the company said the technology highlighted by Moscow-based Positive Technologies was never meant to be "foolproof" and added that the reported flaw does not, by itself, put consumers at risk.Read more at ZDNet
"An attacker cannot use this method by itself to attempt to run malicious code on a user's system," Microsoft said in a statement. "There is no attack that utilizes this, and customers are not at risk from the situation."
Microsoft: "Error in SP2 is not a vulnerability"

Microsoft today responded to a claim of a Russian company that found a way to beat a protective element of Windows XP SP2 saying that they do not consider it as a vulnerability.