Microsoft added in a follow-up blog post that IE 8 users are protected by default from the attack by Data Execution Prevention, a safeguard designed to prevent content data from being misinterpreted by a program as executable commands.
FORBES: Criminal Exploits Targeting New Bug In Old Internet Explorer Versions