Only a day after the last patch was released for IE that fixed problems relating to the Google ( and other ) attacks from December, a number of new vulnerabilities have been found in IE ( no version details yet ) which when combined, can lead to remote execution on a Windows PC. Core Security Technologies in the US outlined how this set of vulnerabilities can be strung together to form the exploit ( however on their own these problems do not appear to constitute an exploit ). Microsoft is determining the level of exposure so as to work out when to release a fix.
Any Windows users still making use of Internet Explorer, should make sure they have Automatic Updates switched on as well as upgrade to IE 8. A better solutions is to use an alternate browser. While other browsers are not certainly not immune to security issues, experience shows that they are an order less prone to attacks, have security fixes released quicker than Microsoft and due to the fact that they are not entangled in the OS ( like IE is ), the attack surface is far lower than IE.
