Microsoft Issues Internet Explorer Security Exploit Advisory
"A remote code execution vulnerability exists in the way that Internet Explorer accesses an object that has been deleted or has not been properly allocated," Microsoft explains. "The vulnerability may corrupt memory in a way that could allow an attacker to execute arbitrary code in the context of the current user within Internet Explorer. An attacker could host a specially crafted website that is designed to exploit this vulnerability through Internet Explorer and then convince a user to view the website."
Microsoft said it's received reports of just a small number of targeted attacks so far. The software giant is working on a security update to plug up hole in IE, but in the meantime, there are several workarounds available. In addition to Microsoft's workarounds, users could always switch to an alternative browser (Chrome, Firefox, Safari) until things are sorted out.