InfoCon Yellow – IE 0-day vulnerability

In the news today – an IE vulnerability first published in May (still hasn’t been patched) allows remote take-over of a victim’s computer. SANS has declared InfoCon Yellow in anticipation of fallout from this exploit.

<p>Suggested workarounds are disabling JavaScript or using <a href="http://getfirefox.com">Firefox</a>.  Firefox 1.5 now includes automatic security updates and we’re recommending its use for all websites other than Microsoft Update.