From zdnet.com
Microsoft has published a security advisory today about an Internet Explorer (IE) vulnerability that is currently being exploited in the wild — a so-called zero-day.
The company’s security advisory (ADV200001) currently only includes workarounds and mitigations that can be applied in order to safeguard vulnerable systems from attacks.
At the time of writing, there is no patch for this issue. Microsoft said it was working on a fix, to be released at a later date.