General 8065 Published by

Patch Available for "Scriptlet Rendering" Vulnerability

Originally Posted: August 09, 2000

Summary
=======
Microsoft has released a patch that eliminates two security
vulnerabilities in Microsoft(r) Internet Explorer. The
vulnerabilities could allow a malicious web site operator to read -
but not add, change, or delete - files on the computer of a visiting
user.

As discussed in the Patch Availability section below, this patch also
provides protection against several security vulnerabilities that
have been discussed in previous security bulletins. We have delivered
a comprehensive patch in order to minimize the number of patches
customers need to apply.

Frequently asked questions regarding this vulnerability
and the patch can be found at
http://www.microsoft.com/technet/security/bulletin/fq00-055.asp

Affected Software Versions
==========================
- Microsoft Internet Explorer 4.x
- Microsoft Internet Explorer 5.x

Patch Availability
==================
- http://www.microsoft.com/windows/ie/download/critical/patch11.htm