November 3, 2010

Remote Code Execution Vulnerability in Internet Explorer (CVE-2010-3962)

Jay Liew

A new vulnerability has been discovered in Internet Explorer that is currently being used in limited attacks. Websense Security Labs is monitoring the situation and will update this blog post as we discover more. Malicious hackers could set up rigged Web sites or insert malicious code into legitimate, compromised sites to infect visitors. This vulnerability could be used for remote code execution. Websense customers are protected by our real-time analytics in ACE


Enabling DEP and Protected Mode in Internet Explorer can mitigate this vulnerability.


For more information see: Microsoft Security Advisory (2458511), CVE-2010-3962US-CERT advisory

About Forcepoint

Forcepoint is the leading user and data protection cybersecurity company, entrusted to safeguard organizations while driving digital transformation and growth. Our solutions adapt in real-time to how people interact with data, providing secure access while enabling employees to create value.