Microsoft is downplaying claims by a US security firm that Windows XP Service Pack 2 (SP2) has 10 unpatched vulnerabilities, reports Information Week. Finjan Software says its Malicious Code Research Centre has found 10 bugs that could be used by hackers to hijack systems when users view malicious Web pages, but Microsoft says the claims are potentially misleading and possibly erroneous.

Finjan says it has provided Microsoft with technical details on the vulnerabilities and with proof-of-concept code that demonstrates how the bugs could be turned into full-fledged security attacks. Microsoft says it is investigating the claims to determine their validity.