The February cumulative security update for Internet Explorer 6, 7, 8, 9, and 10 is available on Windows Update. It fixes thirteen vulnerabilities that were reported in time before they were publicly disclosed. All fixes are related to remote code execution when a user visits an attacker’s Web page. The user can then gain the same rights as the user.
Users with UAC (User Account Control) enabled are better protected against attacks. The update is on Windows Update, so you don't need to take any special action if you have automatic updates enabled. Otherwise, I recommend deploying this update as soon as possible, because the most vulnerable systems are in the time between the disclosure of the vulnerability and the installation of the security update.
The update is for Internet Explorer 6, 7, 8, 9 and 10. It’s rated critical for Windows 7, Windows 8, and Windows RT, and recommended for Windows Server 2012.
The update also applies to Internet Explorer 10 Release Preview for Windows 7.
An update to Adobe Flash Player in Internet Explorer 10 for Windows 8 and Windows RT has also been released, which is also rated as critical.
Another vulnerability concerns VML (Vector Markup Language) and its patch was released as a separate update.
For more information, see Security Bulletins MS13-009 and MS13-010 , and the KB2761465 and KB2805940 Support articles.
I wrote the article for <a href=https://learn.microsoft.com/en-us/archive/blogs/technetczsk/mimodn-aktualizace-adobe-flash-playeru-a-internet-exploreru">TechNet Blog CZ/SK.