A few days ago, we reported a new vulnerability in Microsoft’s Internet Explorer that could allow an attacker to execute code remotely on an affected PC. The vulnerability had been spreading fast and had been added to free attack tools used by hackers.
Microsoft has now issued an interim solution in the form of a Fix It tool which can be downloaded from here. In a blog post published today, Microsoft’s Yunsun Wee says that the tool is a one click solution that will protect users right away and that it will not hinder user’s web browsing in any way. You wont have to reboot your computer as well.
Microsoft will be releasing an out-of-band security update, MS12-063 this Friday to close the vulnerability. The update will be rated critical and will address the zero day vulnerability (Security Advisory 2757760) along with four other remote code execution issues. Users who downloaded the FixIt solution need not uninstall it before installing the update.
If you have automatic updates enabled, the update will be installed automatically and if you don’t, make sure that you install the update so that your computers are not vulnerable. Also, I highly recommend installing the FixIt solution right now to prevent any zero day attacks.