Secunia has issued a warning about Window Injection Vulnerability affecting Internet Explorer 7 installed to fully patched Microsoft Windows XP SP2. The advisory is located at secunia.com/advisories/22628/. Test link included as well.
This is the same issue which was reported in December 2004 as SA13251.
Reportedly Mr. Per Gravgaard reported this issue in IE 7.