It's not a vuln in IE7, says Microsoft, but in Outlook Express
The recently reported vulnerability in the just released IE7, is inaccurate says Microsoft. Instead of a bug in IE7, it’s a bug in Outlook Express, and the bug has been there for some time (and, it also still affects IE6).
Read more…