This is just a quick heads-up that the emergency security patch for Microsoft’s Internet Explorer will be released tomorrow (January 21, 2009).
The update, rated critical for all versions of IE, will cover a remote code execution flaw that has already been used in targeted attacks against U.S. companies, including Google and Adobe.
According to Microsoft’s advance notice, the IE patch affects all supported versions of Windows — from Windows 2000 SP4 through to the newerst Windows 7.
The out-of-band update will follow the public release of exploit code into the Metasploit attack tool.
See this story for more information on the vulnerability and attacks.