The August 2011 Cumulative Security Update for Internet Explorer is now available via Windows Update. This security update resolves five vulnerabilities in Internet Explorer that were disclosed in coordination with Microsoft and two publicly disclosed vulnerabilities.
The most severe vulnerabilities could allow remote code execution if a user visits a malicious, specially crafted Web page using IE. Users who run without administrative rights are more secure in general and should be less impacted than other users; you can read more about this security principle in many places. This security update is rated Critical for IE6, 7, 8, and 9 on Windows clients; for more information about the ratings, the vulnerabilities, and technical details about the fixes please see the full bulletin.
Most customers have enabled automatic updating and do not need to take any action. We recommend that customers who have not enabled automatic updating, enable it (Start Menu, type “Windows Update”). We recommend that administrators, enterprise installations, and end users who want to install this security update manually, apply the update immediately using update management software or by checking for updates using the Microsoft Update service.
—Tyson Storey, Program Manager, Internet Explorer