US-CERT reported a issue (Security Advisory: 972890) on July 6th for an Active-X vulnerability for Microsoft Windows. Currently there is no solution to fix this vulnerability, but steps can be taken to reduce the risk of attack.
Exploitation of the vulnerability could cause the attacker to gain control of the victim's computer. The systems effected are Microsoft Windows XP and Microsoft Windows Server 2003. This vulnerability is not a risk if you are using Windows Vista.