Hey, i found more detailz.
MICROSOFT RELEASED A security patch Thursday designed to fix two security vulnerabilities in certain versions of its Internet Explorer Web browser, the company said in a bulletin on its Web site.
One hole could allow a malicious script embedded in a cookie to be run in an area of a user's PC known as the "local computer zone," where it could alter or delete files on a user's PC. Scripts embedded in cookies are supposed to be run, in most cases, in an area known as the Internet zone, which places tighter restrictions on how programs can behave.