The upcoming Microsoft Patch Tuesday software update will not contain a fix for the recently discovered Internet Explorer 6 and 7 vulnerability.
The vulnerability is capable of allowing hackers to remotely run malicious programs on an infected machine without the knowledge of the user.
According to security software vendor Symantec, hackers exploiting the IE flaw use a link to identify the make of the IE browser. If the browser is Internet Explorer 6 or 7, users are redirected to a malicious website that installs malware on the target system.
The malware allows hackers to remotely run program on the machine.
Microsoft has said it is aware of the flaw and is investigating the matter.
The company said in a statement: “"We will continue to monitor the threat environment and update this advisory if this situation changes. On completion of this investigation, Microsoft will take the appropriate action to protect our customers, which may include providing a solution through our monthly security update release process, or an out-of-cycle security update.”