Peter Foldes wrote:
> All versions of IE affected. This Security Released was published today
> Nov 3
>
> http://www.microsoft.com/technet/sec...y/2458511.mspx


Computerworld - An exploit of an unpatched Internet Explorer
vulnerability has been added to a popular crimeware kit, a move that
will probably push Microsoft to fix the flaw with an emergency update, a
security researcher said Sunday.

Meanwhile, a prominent vulnerability expert has sided with Microsoft,
which has said the bug will be difficult to exploit in Internet Explorer
8 (IE8), the most popular version of the company's browser.

Last week, Microsoft warned users of its IE6, IE7 and IE8 browsers that
hackers were already exploiting a vulnerability in the programs by
tricking them into visiting malicious or compromised Web sites. Once at
such a site, users were subjected to a "drive-by" attack that required
no action on their part to succeed.

http://www.computerworld.com/s/artic...ity_2010-11-08