The news on the Interent Explorer’s bug was published by Michal Zalewski on [1] SecurityFocus Web site last week. The researcher discovered an exploitable overflow in the Web browser.

Attackers can take full advantage of this bug if they wished to crash IE. Entering a malicious site could cause a DoS (Denial of Service).

The weakness has been confirmed on a fully patched system with Internet Explorer version number 6 and Microsoft Windows XP SP2. The problem seems to have been caused by an array boundary error in the handling of HTML tags with multiple event handlers.

Currently Microsoft is investigating the occurred problem and may release a security advisory or a patch in its monthly release process.

Meanwhile, you have a single solution to what can be considered a problem, stay out of untrusted web sites.