Hello, Bill here,
I wanted to let you know that we have just posted Microsoft Security Advisory (961051). This advisory contains information regarding new attacks against a new vulnerability in Internet Explorer.
At this time, we are aware of limited attacks attempting to use the reported vulnerability, but we will continue to track this issue.
The advisory contains workarounds that customers can use to help protect themselves. Upon completion of this investigation, Microsoft will take the appropriate action to help protect our customers. This may include providing a security update through our monthly release or out-of-cycle, if necessary.
We will continue to monitor the situation via our ongoing Software Security Incident Response Process (SSIRP) and post updates to the advisory and the MSRC blog as we become aware of any important new information. In addition, we are actively working with partners in our Microsoft Active Protections Program (MAPP) and our Microsoft Security Response Alliance (MSRA) programs to provide information that they can use to provide broader protections to customers.
In the meantime, we encourage customers to review the advisory and implement the workarounds.
Bill Sisk
*This posting is provided “AS IS” with no warranties, and confers no rights.*