Microsoft has confirmed that it is working on a security update to rectify a vulnerability affecting Internet Explorer.

IT support specialists have been warned that the Microsoft Video ActiveX Control code execution vulnerability could enable an attacker to run code as a logged-on user if they browse a malicious site.

The software developer's Software Security Incident Response Process (SSIRP) is working to develop an update to address the issue, but has recommended that customers to set "all killbits associated with this particular control".

In a post on the Microsoft Security Response Centre blog, Christopher Budd said: "Our investigation has shown that there are no by-design uses for this ActiveX Control within Internet Explorer.

"Therefore, we're recommending that all customers go ahead and implement the workaround outlined in the Security Advisory."

In 2008, Microsoft urged Internet Explorer customers to switch to an alternative browser while it attempted to fix a serious security flaw, which exposed users' to criminals capable of taking control of their computers to steal data.

A recent survey for Connect found that one in ten companies has lost important data as a result of a backup failure. The company has now developed a unique online backup service for SMEs to ensure they can survive any disaster.