As you heard, we released a security advisory last Tuesday concerning a COM object that could cause IE to crash and that could cause a remote code execution. There is quite some chatter around this vulnerability, which was – unfortunately – disclosed irresponsibly. Please make sure that you do your risk assessment and think about implementing the workarounds described in Microsoft Security Advisory (903144) up until we issue a security update for this vulnerability. You can find additional information on the MELANI (www.melani.admin.ch) homepage

Roger