Attackers exploit unpatched Internet Explorer vulnerability

http://eromang.zataz.com/2012/09/16/zero-day-season-is-really-not-over-yet/

According to a blog post by security specialist Eric Romang, a security hole in Microsoft’s Internet Explorer web browser is being used by cyber criminals to infect computers with malware. The vulnerability, which was apparently unknown and unpatched until now, seems to hinge on how IE handles <img> arrays in HTML files. So far, the attackers have only targeted versions 7 and 8 of IE on fully patched Windows XP SP3 systems; it is not yet certain whether the exploit can be used with other software combinations.

Read more: Attackers exploit unpatched Internet Explorer vulnerability

Story added 18. September 2012, content source with full text you can find at link above.