There is a huge difference between merely visiting a website, and downloading and then opening/executing a file.

Once again, this vulnerability only affects the "Graphics Rendering Engine in Microsoft Windows", which is used by the MSIE browser, and which is not used by Firefox/Mozilla/Netscape. The fact that other Microsoft applications (like the Windows Picture and Fax Viewer, which also uses the problematic DLL) are also affected is not really relevant.