Yet again a new IE bug has been discovered. The Advisory for the new bug is already posted in Secunia.
“The vulnerability is caused due to an error in the processing of certain sequences of nested ‘object’ HTML tags.”
This can be exploited when visiting a malicious website and has been confirmed to work on Internet Explorer 6.0 Windows XP SP2.