wiredmikey (1824622) writes "As promised, Microsoft has patched Internet Explorer against the recently discovered Zero-Day that has made headlines this week. In addition, they also patched four other flaws that were privately disclosed, but unlike the main vulnerability, these were not being exploited in the wild. The vulnerability has been actively exploited and used to deliver various payloads including two Remote Access Trojans, PlugX and Poison Ivy.
When Wednesday’s announcement was made by the software giant, they promised that a full patch would be made available by the end of the week, and they delivered on that promise shortly after 1:00 p.m. EST today.
“The majority of customers have automatic updates enabled and will not need to take any action because protections will be downloaded and installed automatically," Microsoft said. "For those manually updating, we encourage you to apply this update as quickly as possible... In addition to addressing the issue described in Security Advisory 2757760, MS12-063 also resolves four privately disclosed vulnerabilities that are currently not being exploited.”"
Link to Original Source