Microsoft released two security advisories. One is for IE flaw and the other one is for Windows Service ACLs.
For the IE flaw, it could allow arbitrary code execution. This is by using a specially crafted WMF file hosted on a website, though this advisory has nothing to do with the MS06-001. IE 6 Service Pack 1 resolves this issue.
For the the Windows Service ACLs exploit, the attacker can easily exploit a third-party software using the said service. Microsoft advises the users to contact their 3rd-party software.
