How tech reporting should be done
Kudos to Peter Bright of Ars Technica. A truly informative piece about a security hole in Windows. The great thing about this article is not (just) the topic but the care with which it is written.
Where Windows is different from other operating systems is that it combines these two features; when a program instructs Windows to load a DLL, Windows looks in several different places for the library, including the current directory. Critically, it searches the current directory before looking in more likely locations such as the System32 directory, where most system libraries reside.