Several links found in research are noted below which describe this new vulnerability and limited attacks circulating in wild:

QUOTE: Don’t say we didn’t warn you. Microsoft ended support for Windows XP earlier this month, meaning any new security holes won’t be patched. Well, they’ve found one, and it’s a doozy. Affecting Internet Explorer versions from 6.0 through 11, this bug lets the bad guys execute arbitrary code on your system. As soon as you visit a gimmicked website, you’re pwned. Other Windows versions will get patched, but not XP.  You may remember that Windows XP never advanced beyond IE8. Researchers at FireEye say the attacks they’ve seen are targeting IE9 and later, but that doesn’t mean earlier versions couldn’t be hit.