Microsoft patches 'critical' hole

Hackers could exploit vulnerability using Internet Explorer 7

SEATTLE - Microsoft Corp. issued two security fixes in a regular monthly update Tuesday, including one that removes a dangerous bug in all versions of Windows XP and Windows Server 2003.

Microsoft gave the serious security fix its most urgent "critical" rating. Hackers could exploit a vulnerability using Internet Explorer 7, and possibly other programs, and take over a user's computer for a variety of nefarious purposes, such as stealing passwords or pumping out spam.