Fortinet Discovers Vulnerability in Microsoft Internet Explorer 8
Fortinet's FortiGuard Labs has discovered an insecure library loading vulnerability in Microsoft Internet Explorer 8.
SolutionsFortiGuard Labs released the following FortiGate IPS signature which covers this specific vulnerability:
Released Mar 02, 2011
Users should apply the solution provided by Microsoft.
The vulnerability exists in the way Internet Explorer 8 handles the loading of IEShims.dll. In a successful exploit of this vulnerability, an attacker could gain the same user rights as the logged-on user.
Haifei Li of Fortinet's FortiGuard Labs