Fortinet Discovers Remote Code Execution Vulnerability In Microsoft Internet Explorer
Fortinet's FortiGuard Labs has discovered remote code execution vulnerability In Microsoft Internet Explorer.
SolutionsFortiGuard Labs released the following FortiGate IPS signature which covers this specific vulnerability:
Released Jun 05, 2009
Use the solution provided by Microsoft.
The vulnerability occurs when Internet Explorer processes special DHTML functions. A crash may happen when destroying a window after making a sequence of calls on the "tr" element. These calls are linked to the insertion, deletion and attributes of a table cell. The crash may then allow the arbitrary execution of code on the browsers machine.
Haifei Li of Fortinet's FortiGuard Global Security Research Team