Apparently the Iframe Cash Crooks are up to their same old crooked habits once more. Websense Security Labs have received reports that the latest Windows exploit, "WebView FolderIcon setSlice" Internet Explorer zero-day code is being used on the Internet. The exploit attempts to load malicious software onto vulnerable Windows PC through the Windows Shell. The Windows Shell is part of the operating system that presents the user interface. Microsoft put out a warning on Thursday about the Windows Shell flaw, it affects Win2K, WinXP, Win Server 2003. The component in Internet Explorer known as WebViewFolderIcon is the vulnerable point of entry for the malicious code to run through.
The flaw was discovered about 2 months ago and the exploit code has just hit the net recently. MS says it will have a patch available by Oct. 10.
Should you want protection now the following links may help.
Socket Shield
ZERT