Microsoft has released Security Bulletin MS12-063 on 21 September 2012. Microsoft Internet Explorer versions 6, 7, 8 and 9 are susceptible to a use-after-free vulnerability.
A remote, unauthenticated attacker could execute arbitrary code, cause a denial of service, or gain unauthorized access to your files or system. Microsoft has released required Windows updated to patch this vulnerability and four others.
For details, please refer to: