One IE flaw leads to another
As researchers pored over a vulnerability found within Microsoft's Internet Explorer less than a week ago, they discovered a totally new IE flaw.
The new bug could be used to launch code execution attacks. Microsoft acknowledged that the vulnerability, found by Andreas Sandblad of Secunia, is not just a successful exploit of the flaw uncovered last week by Michal Zalewski.
It was originally believed that the flaw found by Sandblad was related to the one discovered by Zalewski, but a Microsoft representative confirmed that the two vulnerabilities are separate.
Read the rest of the story here