Looks like MS just confirmed the 0day in IE…not that it’s being exploited or anything, they swear:

Microsoft is investigating new public reports of a possible vulnerability in Internet Explorer. We are not aware of attacks that try to use the reported vulnerabilities or of customer impact at this time. Microsoft is aggressively investigating the public reports.

Unless you check with the Internet Storm Center, who are not quite so optimistic:

Yesterday, FrSIRT (aka K-otik) released a working 0-day exploit against a .Net component with is accessible remotely via Microsoft Internet Explorer.

Further down, however, an interesting point is my by The Handlers:

It merits pointing out that this particular vulnerability really isn’t 0-day, it’s more like 380-day, as the underlying vulnerability has been around for a LONG TIME.

See http://www.informationweek.com/story/showArticle.jhtml?articleID=22102487&tid=5979 for example.

Never a dull moment in our business.