Secunia issues a rare "Extremely Critical" advisory regarding a browser hole that allows execution of arbitrary code. Get the details:
Unpatched IE Flaw Is Worse Than Expected(The vulnerability has been confirmed on a fully patched system with Internet Explorer 6.0 and Microsoft Windows XP SP2, and Internet Explorer 6.0 and Microsoft Windows 2000 SP4. IE 5.x is also considered to be vulnerable. ... Since MS has not addressed this issue in IE, the only way to mitigate is to disable active scripting for non-trusted sites. Or don't use IE.)
