A potential Microsoft Internet Explorer 7 and 8 zero-day is actually exploited in the wild. Less than three weeks after the discovery of the Java SE 7 0day, aka CVE-2012-4681, potentially used by the Nitro gang in targeted attacks. I wasnt a target of the 0day but I tested it on my lab. This misunderstanding has been introduced by Reuters in their press release. I did these researches on my personal time, and research is not linked with my professional activities.”]
Source: https://eromang.zataz.com/2012/09/16/zero-day-season-is-really-not-over-yet/