IE XML Parsing BoF exploit
A new XML based heap corruption exploit has been published on milwOrm, the exploit affects all versions of IE, tested for IE 6.x, IE 7.x, XP SP2, XP SP3 and Vista which endangers your safety if you use Internet Exploiter for browsing.
The exploit allows someone remotely to download/execute anything on your machine.
Kaspersky Antivirus is able to detect and block the execution of the exploit, however, this might not be true if the exploit was hardcoded. Play safe.
an inside look on the exploit has been written by my brother DATA_SNIPER on his blog, click H E R E to read about it.