SiliconValleySleuth shows us “a Windows XP system visiting a website that installs a slew of malware using a zero day vulnerability in Internet Explorer.” Video after the jump.

The attacker then installs malware and a rootkit that attempts to hide the attack from the system and security software. The user never gets to see any warnings or prompts.

Video

Description

This particular case was recorded late last year. It exploited a Javascript flaw in Windows XP and Internet Explorer that has since been repaired.
And don’t say that this can’t happen with Firefox. There are known cases of fly-by malware infections using flaws in the open source browser too, McAfee said