A Metasploit exploit module has been released for the zero-day vulnerability in Internet Explorer. The flaw has been exploited in attacks against Japanese targets. Microsoft has yet to issue an out-of-band patch for the bug, and with Patch Tuesday a week away, it s increasingly likely users will continue to be exposed for at least another seven days. Attackers could infect victims by luring them to a website hosting the malicious javascript exploit, or spike an online ad with the exploit.
Source: https://threatpost.com/metasploit-module-released-for-ie-zero-day/102471/