There is a vulnerability in IE 7 that could allow remote execution of arbitrary code.

http://www.security-database.com/det...=CVE-2010-0807