New publicly disclosed vulnerability in Internet Explorer

Yet another IE vulnerability has hit the streets.

Read the update at the Internet Storm Center.

Microsoft says

Our initial investigation has revealed that if you turn off Active Scripting, that will prevent the attack as this requires script. Customers who use supported versions of Outlook or Outlook Express aren’t at risk from the email vector since script doesn’t render in mail (being read in the restricted sites zone).

Switch to another browser. Get Firefox. Get Opera.