The HTML Object Memory Corruption Vulnerability (IE 0day vulnerability)
The vulnerability is present in Internet Explorer 6, Internet Explorer 7, and Internet Explorer 8. All versions may crash after opening the attack code. However, there are a number of ways to limit the attack to an IE crash and prevent attacker code execution.
Additional information can be found at Microsoft's Security Research & Defense web site.