Researchers are warning about a new remotely exploitable vulnerability in 64-bit Windows 7 (https://threatpost.com/en_us/blogs/researchers-warn-new-windows-7-vulnerability-122011) that can be used by an attacker to run arbitrary code on a vulnerable machine. The bug was first reported a couple of days ago by an independent researcher and confirmed by Secunia. In a message on Twitter, a researcher named w3bd3vil said that he had found a method for exploiting the vulnerability by simply feeding an iframe with an overly large height to Safari. The exploit gives the attacker the ability to run arbitrary code on the victim's machine

http://it.slashdot.org/story/11/12/21/1918240/new-remote-flaw-in-64-bit-windows-7