According to the Microsoft an update to its security advisory on the issue It has not yet been patched, It has been used in “limited, targeted attacks.”According to the Google “We’ve noticed some highly targeted and apparently politically motivated attacks against our users,” Google said in blog post. “We believe activists may have been a specific target. We’ve also seen attacks against users of another popular social site.”
The flaw Draw it’s code in the Windows mshtml.dll software library used by Internet Explorer, and affects all Windows.Microsoft has released a Fixit tool that users can download to repair the problem, but has not said when, or even if, it plans to push out a comprehensive security update to all users.
Now that the flaw is being exploited in attacks, the pressure is mounting on Microsoft to produce a reliable patch for the issue that can be pushed out to hundreds of millions of customers.Google has said that the we recommend concerned users and corporations seriously consider deploying Microsoft’s temporary Fixit to block this attack until an official patch is available,”.