At the end of December we learned a vulnerability through Flash in previous versions of Microsoft browsers. The vulnerability was present in the version 6, 7 and 8 of IE Explorer, so Microsoft threw a Fix-it to fix it during the final days of last year.

Today the company from Redmond has released a new patch (that well could be called "the patch patch") in which attempts to give definitive to the problem solution. This patch is recommended by Microsoft as "very important" and should be installed as soon as possible.

The vulnerability is a remote code execution in the way that Internet Explorer accesses an object in memory that has been deleted or has not properly allocated. The vulnerability may corrupt memory in such a way that could allow an attacker to execute arbitrary code in the context of the current Internet Explorer user. An attacker could host a web site designed to exploit this vulnerability through Internet Explorer and then convince a user to visit the web site.

The download and installation of the patch is automatic, thanks to Windows Update. Microsoft recommends that you uninstall the previous patch before you install the new patch.

If you are still using previous versions of IE, it is recommended that you download the latest version. Versions 8-10 has not been affected by this vulnerability.