Microsoft has stated that they will be releasing an out-of-band patch to plug up a critical exploit that affects IE6 - 8 and could allow for remote code execution. The out of band patch is marked as critical and will arrive on January 14th; the update will require you to restart your machine.
