A vulnerability in the way Internet Explorer parses MHTML content -- a method for combining multiple file types and HTML content into a single file -- is now targeting users as part of a "drive-by" browser attack. It's called that due to the process by which attackers exploit the loophole: They'll create a malicious website, lure a user in, and then force the user's browser to run Javascript code.
- Read the article: PC Magazine