From News.com: “A patch for the flaw is not available. As an interim measure, the software giant advises people to set their Internet and local intranet security zone settings to “high” before running ActiveX controls.