MSN India SQl injection

A Sql injection vulnerability has been reported in MSN India web site.
The vendor (Microsoft) was quick in responding to us. The site was immediately taken offline.
The full story will be released at NII web site very shortly along with
the WINDOWS DISPLAY DRIVER DOS vulnerability