You call *THAT* security?!?
Are you guys seriously calling that "heuristic" a security *feature*? I would call it more of a problem than a fix to system security in Windows. I've posted details at The Lost Admin blog, http://blog.hedron.org/. In summary (for those who don't wish to leave the Reg:
1. It will make insecure programming even easier as inexperience programmers will assume even more security is automatically added.
2. It will increase end-user click OK without reading
3. It will may corporate IT's job more difficult when trying to protect end-user systems and still remain flexible.