A recently discovered vulnerability in all of the last five versions of Internet Explorer (IE 6 through IE 10) can be exploited to remotely gain administrator-level access to a victim’s computer. This vulnerability is a memory-related bug in Internet Explorer’s handling of TrueType fonts. Merely by convincing an IE user to view maliciously-designed web content, an informed attacker could remotely run executables, such as viruses or other malware, on the victim’s computer.
The good news is that Microsoft already has a patch available to prevent any harm, for users who update Internet Explorer. This can be done either by running Windows Updates, or by following the specific update instructions for your version of Internet Explorer. So, if you use Internet Explorer, remember to apply Windows updates! Your computer could be at risk.