The [URL=http://www.k-otik.com/exploits/09222004.ms04-28.sh.php]flaw[/URL] which affects a long list of Windows applications, including Internet Explorer 6 SP1, can allow an attacker to compromise any computer running Windows when the user simply looks at a page with a malicious jpeg image. This [URL=http://www.microsoft.com/security/bulletins/200409_jpeg.mspx]page[/URL] at Microsoft shows the complete list of affected applications. The [URL=http://isc.sans.org]Internet Storm Center[/URL] is monitoring the situation, they also have a scanner that will scan your systems for vulnerable versions of the GDI libraries.