Microsoft Security Advisory (911302): Vulnerability in the way Internet Explorer Handles onLoad Events Could Allow Remote Code Execution: http://www.microsoft.com/technet/security/advisory/911302.mspx And a happy holidays to everyone.... yeah an advisory right before T-giving.
