Websense Security Labs Blog

Websense Security Labs discovers, investigates and reports on advanced Internet threats that traditional security
research methods miss.

Remote Code Execution Vulnerability in Internet Explorer (CVE-2010-3962)

View all posts > 

Remote Code Execution Vulnerability in Internet Explorer (CVE-2010-3962)

Posted: 03 Nov 2010 08:52 PM | Jay Liew | 1 comment(s)

A new vulnerability has been discovered in Internet Explorer that is currently being used in limited attacks. Websense Security Labs is monitoring the situation and will update this blog post as we discover more. Malicious hackers could set up rigged Web sites or insert malicious code into legitimate, compromised sites to infect visitors. This vulnerability could be used for remote code execution. Websense customers are protected by our real-time analytics in ACE.



Enabling DEP and Protected Mode in Internet Explorer can mitigate this vulnerability.


For more information see: Microsoft Security Advisory (2458511), CVE-2010-3962, US-CERT advisory



extraexploit said on Thursday, November 4, 2010 3:56 AM

Hi there,

for crash poc about this issue check my latest blog post:


Leave a Comment


Email address: (required)