In Microsoft Security Bulletin Summary for December 2007, Microsoft has released updates to address vulnerabilities that affect Microsoft Windows and Microsoft Internet Explorer.
More technical information is available in US-CERT Technical Cyber Security Alert TA07-345A.