Per a quick note from the MSRC, Microsoft has a fix for the huge Internet Explorer hole that has the industry in uproar.
Microsoft has released a “Fix It” component that you can apply right now:
Or, you can wait until Friday, September 21st, to see a cumulative Internet Explorer update roll through Windows Update.
Read the full MSRC announcement: Internet Explorer Fix it available now; Security Update scheduled for Friday
And, Microsoft goes into full detail about the “Fix It” component versus the Friday out-of-band update in an updated blog post here: More information on Security Advisory 2757760’s Fix It
A couple important pieces from the blog post to point out:
- Affects IE 6, 7, 8, and 9
- Does not affect IE 10
- Real attacks have been exhibited on 32-bit versions of Internet Explorer with specific “plug-ins” running