SECURITY outfit Sunbelt says that it has seen a nasty new Zero Day exploit which exploits a VML vulnerability in IE. Writing in his bog, Sunbelt's research boffin Eric Sites said that the hack was discovered coming from a pron site. We guess someone was testing the porn site for security issues when they noticed the exploit taking place.
The exploit uses a bug in VML in Internet Explorer to overflow a buffer and inject shellcode. It has been seen at a number of different sites since its first appearance.