The patches for IE6, IE7, and IE8 are available on Windows Update and Microsoft Update. Unfortunately for me, our business proxy blocks access to these sites. We also have to go through a corporate vulnerability rating process, and if the vulnerability rates severe enough, a deployment plan will be developed, and tested, and scheduled…. long story short, without intervention on my part, it will be a long time until my machine sees any critical updates.
The ISC has rated this vulnerability at it’s highest risk level, PATCH NOW!
I manually downloaded the patch from the Microsoft download site. You can find the patch for all OSs and versions of IE here.