Critical IE flaw allows remote code execution by trojan horse
This security bug appearead in May, but the patch was only a partial fix.
It allows code execution on the target machine.
Malicious software that exploits the security flaw to download a Trojan horse to vulnerable computers has been found on the Internet, according to Microsoft. Detection and removal capabilities for the "TrojanDownloader:Win32/Delf.DH" have been added to Microsoft's recently launched online security-scanning tool.
More reading on: CNET News by Joris Evers