Earlier this week, we covered the new FREAK attack (Factoring RSA Export Keys) that exploits decades-old security flaws to cripple security settings on modern browsers. At the time, it was believed Windows wasn’t affected. Microsoft has now released a statement that this isn’t true, and is advising users to apply a workaround until a patch can be provided. Affected operating systems include Windows Server 2003, Vista (all flavors), Server 2008, and all consumer versions of Windows, 

http://www.extremetech.com/computing/200555-microsoft-internet-explorer-windows-vulnerable-to-freak-attack