A weekend blog post from MS about this. Not common at all.

This exploit would allow remote code execution if one visits an affected website, after browser compromise through email or even IM.

IE 10 and 11 are protected from this if they have “Enhanced Protection Mode” turned on. You are also protected if you have EMET 4.1 or 5.0 Tech Preview installed.

“Microsoft says that PC owners should always enable their personal firewall, make sure to have all of the latest software updates for their programs, and have all the most recent anti-virus and anti-malware definitions.

Finally, Microsoft said, " ... we encourage everyone to exercise caution when visiting websites and avoid clicking suspicious links, or opening email messages from unfamiliar senders." The blog did not have any information on when Microsoft will release a patch that will close this latest IE exploit.” – Neowin

 

Update 1:

MS has confirmed the security hole and workarounds - read more here:

http://www.neowin.net/news/microsoft-confirms-workarounds-for-internet-explorers-major-vulnerability

Source:

http://www.neowin.net/news/microsoft-issues-security-advisory-for-internet-explorer-exploit