Doesn't this make it a "180-Day", since they have known about it since September? I never understand why they don't patch these things sooner. If they really knew about it, why the delay? Is there some kind of denial system deep in the bowels of the Microsoft machine?
Threat Level Report on Microsoft's Latest Zero-Day IE Vulnerability