“The 0-day vulnerability allows an attacker already on the machine to gain admin privileges, and we can assume that the underground is working to make that vulnerability part of their arsenal. The vulnerability should be addressed next Patch Tuesday unless wider exploitation in the wild is detected.”
On the other hand, Microsoft released five different security bulletins, one of which was marked as “critical” and was supposed to address security flaws found in Internet
Explorer. All versions of the browsers got patched today, regardless of the Windows versions they’re running on.
In addition, both Windows and Office received new patches, so make sure you install the available bulletins as soon as possible.