Earlier this week Eric Romang stumbled upon a zero-day vulnerability in Internet Explorer while he was going through an already compromised server. Microsoft was quick to respond to this and confirmed the existence of the vulnerability the very next day.
Yesterday Microsoft released a temporary fix addressing this vulnerability with a promise that a cumulative update for Internet Explorer shall be released this Friday through windows update and other update distribution methods. According to Microsoft, users wouldn’t need to go through any advanced set of steps to install this fix and once installed it wouldn’t hamper users’ ability to browse the internet.
Microsoft said on its official corporate security response blog, “…on this Friday, Sept. 21, we will release a cumulative update for Internet Explorer through Windows Update and our other standard distribution channels.”
Administrators and security professional who may want additional details on the cumulative update may head on to Microsoft’s Advance Notification Service (ANS).