Internet Explorer – Insecure Lab

MHTML vulnerability under active exploitation

14-March-201124-March-2011 Prasanna Sherekar

The flaw, which was first highlighted by Microsoft in an advisory in January, allows an attacker to inject a client-side script into the response to a request made by Internet Explorer. The script could allow a hacker to compromise the user by performing actions online that appear to have originated from the user; by stealing […]

All versions of Internet Explorer under threat

23-December-201029-December-2010 Prasanna SherekarLeave a Comment

Today Microsoft released a new security advisory to help protect users from a vulnerability affecting Internet Explorer versions 6, 7, and 8. Exploiting this vulnerability could lead to unauthorized remote code execution inside the iexplore.exe process. Internet Explorer loads mscorie.dll, a library that was not compiled with /DYNAMICBASE (thus not supporting ASLR and being located […]