Microsoft Internet Explorer
'New' Internet Explorer zero-day has been exploited for three months
Reports are coming in this week that Microsoft's Internet Explorer zero-day (CVE-2013-3893), which remains unpatched, has been exploited for at least three months now.