Risks & mitigation of using IE8 on a server that runs an app that requires IE8
Posted on 2016-10-19
We have an app from EMC (the storage vendor) that requires us to use IE8 :
log a case & was told IE10-11 not supported as screen gets garbled.
As this server is internal (ie not accessible via Internet & not in DMZ),
what's the risks? I suppose an internally infected PC/server can still
exploit & get into this server/app that runs IE8 (as console to the app).
How can we mitigate as IE8 doesn't have patches anymore? Use endpoint
IPS as substitute for various vulnerabilities but I'm afraid many IPS vendor
has ceased releasing signatures/filters for IE8.
Havent explore with Chrome/Firefox yet if it works with the apps but was
told by colleague that they're unlikely to be supported.
IE8 is to be run/installed on the server hosting the app, not on laptops/PCs
I'll convey the name of the EMC app later