Four days after Microsoft learned of a nasty Internet Explorer flaw that malware writers had already begun to exploit, the company pushed out a permanent software patch.
"This security update is rated Critical for Internet Explorer 6, Internet Explorer 7, Internet Explorer 8, and Internet Explorer 9 on Windows clients and Moderate for Internet Explorer 6, Internet Explorer 7, Internet Explorer 8, and Internet Explorer 9 on Windows servers," a Microsoft security bulletin published today (Sept. 21) read.
Windows users who have automatic updating turned on will get the patch without any effort. For those who don't, Microsoft urges them to deploy Windows Update manually.
Microsoft posted "fix it" workaround software Wednesday that temporarily deactivated the flaw. Today's permanent patch overrides the "fix it," which does not itself need to be disabled or uninstalled before the patch is installed.