A fairly serious flaw in Internet Explorer which would enable a malicious Web page or e-mail to drop a cookie containing an HTML script on a victim's machine and run it in the 'Local Computer' zone rather than the Internet zone to avoid restrictions has just been patched.

The Register (http://www.theregister.co.uk/content/4/24653.html)

The Patches (http://www.microsoft.com/windows/ie/downloads/critical/Q319182/default.asp)

you are way too informed ;)

all these M$ security posts are getting repetative. "Another major security hole in M$ product!" :p

Originally posted by Asendin
A fairly serious flaw in Internet Explorer which would enable a malicious Web page or e-mail to drop a cookie containing an HTML script on a victim's machine and run it in the 'Local Computer' zone rather than the Internet zone to avoid restrictions has just been patched.

The Register (http://www.theregister.co.uk/content/4/24653.html)

The Patches (http://www.microsoft.com/windows/ie/downloads/critical/Q319182/default.asp) already installed on day of release :D