It's not so dangerous this time (yet) ...

Hundreds of malicious Web sites are attempting to exploit the most critical of two flaws announced in Microsoft's browser over the last week, convincing two companies to release workarounds late Monday to head off the threat. Security firms Determina and eEye Digital Security each created a standalone patch to protect Windows systems that use Internet Explorer to browse the Web. The vulnerability, the most critical of three announced in the last week, is reportedly being actively exploited by more than 200 malicious Web sites. So Microsoft is again last to bring out there own patch ... however are these other companies not using these patches in a commercial way? Are they not exagerating? This is not the same situation as last time during the WMF exploit period when the risc was really higher in my opinion.