On December 17, 2008, Microsoft released a critical security update for Internet Explorer 7. This update corrects a vulnerability that allows attackers to gain access to Windows systems without authentication through remote code execution while you are browsing the Web.
ITS urges all Windows users and administrators to install the update as soon as possible. Go to http://www.microsoft.com/protect and then click Latest Security Updates in the left-hand menu. You will need to restart your system in order for the update to take effect. (Posted December 17, 2008)