In a security advisory that Microsoft released yesterday, they are investigating a public report that users of Internet Explorer 6, Internet Explorer 7 and Internet Explorer 8 could be vulnerable to another new exploit. Users of IE 9 and IE 10 are not at risk.
The vulnerability is a remote code execution vulnerability that exists in the way that Internet Explorer accesses an object in memory that has been deleted or has not been properly allocated. The vulnerability may corrupt memory in a way that could allow an attacker to execute arbitrary code in the context of the current user within Internet Explorer. An attacker could host a specially crafted website that is designed to exploit this vulnerability through Internet Explorer and then convince a user to view the website.
Internet Explorer on server operating systems has an enhanced security mode which mitigates this type of exploit/attack by preventing the execution of this type malware. Microsoft suggests that users keep their systems, including 3rd party software, up to date to ensure they have the latest patches and security protection.
Jump to the source link to get all the details on how to keep protected from the exploit.