Not being big on Web Apps or needing to secure them, I am not sure as to how the app server needs to be patched.
The first message seems to connect to http://www.bumblesnowmonster.com and downloads a small (0X0) jpeg from the snowmonster webpage.
The second script looks for the first script and then the CGI bin in the web app? Form here it looks as if it is grabbing the stored cookie and possibly the users login info to be returned to the bumblesnowmonsterpage?
Turning UP your IE security settings would disable the cookie from being stored in the first place, therefore nothing for the script to return.
Also, turning off the preview pane in your mail window would stop the script from downloading automatically as you browse your mail.
The web app side I have no clue about.
P.S. I only rated your article a 2 due to your hat, you don't have a beard and therefore are NOT the REAL Santa, you lost credibility and therefore so did your article.
I will be interested in seeing the correct answers though!
Keep Up with TechRepublic