Core Security Technologies published the details of vulnerability (advisory ID CORE-2009-0625) what could be called as one of the critical vulnerability. The vulnerability can get exploited by cyber criminals to infect users computers visiting the specially crafted web pages. Core Security has reported the vulnerability to Microsoft since more than 8 months now and finally published the vulnerability with sample POC code.
Microsoft standard response can be found at:https://www.microsoft.com/technet/security/advisory/980088.mspx
Looking at the wide scope to which it affects, it will not be too long that we will see the vulnerability being exploited by the hackers.
We will be monitoring for cases related to this exploit.