http://secunia.com/advisories/23205/

http://blogs.technet.com/msrc/archiv...-zero-day.aspx

Secunia states that the vulnerability is being actively exploited in the wild.