“While looking around a compromised server that was being used to exploit Java vulnerabilities, a security researcher stumbled upon another exploit that he claims affects fully patched versions of Microsoft Internet Explorer 7 and 8.”
Source: Java zero-day leads to Internet Explorer zero-day | ZDNet