A new vulnerability has been discovered in Internet Explorer that is currently being used in limited attacks. Websense Security Labs is monitoring the situation and will update this blog post as we discover more. Malicious hackers could set up rigged Web sites or insert malicious code into legitimate, compromised sites to infect visitors. This vulnerability could be used for remote code execution. Websense customers are protected by our real-time analytics in ACE.
Enabling DEP and Protected Mode in Internet Explorer can mitigate this vulnerability.
For more information see: Microsoft Security Advisory (2458511), CVE-2010-3962, US-CERT advisory