Vulnerability in Microsoft XML Core Services Could Allow Remote Code Execution
Vulnerability in Microsoft XML Core Services Could Allow Remote Code Execution
http://www.microsoft.com/technet/security/advisory/927892.mspx
Note, the vulnerability is not in IE, although IE is used as an infection vector.
Note that the associated KB is not yet live at time of writing:
http://support.microsoft.com/kb/927892
Specifics:
Microsoft is aware of a new, publicly disclosed, vulnerability report affecting the XMLHTTP 4.0 ActiveX Control, which is part of Microsoft XML Core Services 4.0. This vulnerability affects the software that is listed in the “Overview” section.
Microsoft XML Core Services 4.0 installed on Windows 2000 SP4, Windows XP SP2 and Windows Server 2003 SP0/SP1 include the vulnerable ActiveX (note:Windows Server 2003 and Windows Server 2003 Service Pack 1 in their default configurations, with the Enhanced Security Configuration turned on, are not affected)
I'd advise you set the killbix as described in the Technet security advisory.
Related articles:
http://www.frsirt.com/english/advisories/2006/4334
http://xforce.iss.net/xforce/alerts/id/239
http://secunia.com/advisories/22687/ (thankfully Secunia is not saying that its an "IE7 vulnerability" this time)