Latest!! Flaw affecting Internet Explorer 7

I wrote yesterday about the latest revisions made by Microsoft to their previously published security bulletin MS06-42 where another flaw was discovered in IE6 after applying the security update. I am deploying a couple of servers to replace some old hardware in my organisation. The servers are running Windows Server 2003 Enterprise edition with SP1.

I installed the OS and proceeded to run automatic updates which now includes Internet Explorer 7.0 (IE7). As you must be knowing, Windows servers on first boot runs in a very secured mode where it urges you to update the software with all the updates since the OS was released and opens up a HT application page which helps you in update the system. In this secured mode every inbound connection except from update.microsoft.com is blocked (I can't even ping). Anyway, that's not the point I am trying to make.

So after I applied all the updates including IE7, it asked me to reboot the server. After starting up, it again showed me the HTA page where there is another option to configure automatic updates. I generally don't run automatic updates on my servers as I like to test the patches before deploying them on production boxes. On clicking the Finish button, where I assume it uses the window.closed() property, I immediately got an error message which told me that it encountered an error in processing a script. The problem was "Access Denied".

Microsoft in its revision has listed down only Internet Explorer 6 in the Applies To: section of the revision. I have recreated the issue in IE7 and I am sure I will be able to recreate it if I have to.