The patch that fixes the major IE url spoofing bug is out . go here for more info and to download http://www.microsoft.com/security/security_bulletins/20040202_windows.asp
after installation you can head off to this link to test if all installed well http://www.secunia.com/internet_explorer_address_bar_spoofing_test/ .
if it does go well, when you perform the test IE should have the follwing error in its header "invalid syntax error"
in other news my little project has advanced more, kinda like my own blogging software, so have a look here http://kashif.pcplayground.com