In keeping with the IE discussion, Microsoft annoucned a culmative update for IE today. 

Microsoft Security Bulletin MS04-040:

Cumulative Security Update for Internet Explorer (889293)

Bulletin URL:


Version Number: 1.0

Issued Date: Wednesday, December 01, 2004 Impact of Vulnerability: Remote Code Execution Maximum Severity Rating: Critical

Patch(es) Replaced: This update replaces the update that is included with Microsoft Security Bulletin MS04-038. That update is also a cumulative update.

Caveats: Microsoft Knowledge Base Article 889293 documents the currently known issues that customers may experience when they install this security update. The article also documents recommended solutions for these issues. Important: This update may not include hotfixes that have been released since the release of MS04-004 or MS04-038. Customers who have received hotfixes from Microsoft or from their support providers since the release of MS04-004 or MS04-038 should not install this update. Instead customers should deploy update 889669. This update contains several functionality and security changes which are documented in the FAQ section for this update.