All Internet Explorer versions affected by newly-discovered critical flaw
Vista and Windows 7 users are at less risk than those on XP because of their OS's Protected Mode, which would limit the attacker's access rights. Microsoft suggests using EMET (Enhanced Mitigation Experience Toolkit) to protect all Internet Explorer processes -- but it's a tool designed for admins, not the average home user.
While there's no timetable given for an official fix, Microsoft has already begun working with security providers to ensure that additional protection can be delivered via definition updates. They also, of course, recommend running all Windows Updates, making sure your firewall is turned on, and having a good, up-to-date antimalware program installed.