Reports have been coming in that a new 0 Day Remote DoS for Microsoft is being used in the wild.
The vulnerability exists in the ipnathlp.dll. In order for the exploit to work, Internet Connection Sharing should be enabled and the attack should come from the shared interface. This has been confirmed to disable the Windows Firewall.
More information can be found from the ncircle blog.
The PoC for this has also been released by milw0rm.
