Linked by HAL2001 on Mon 31st Jan 2011 22:39 UTC
Windows A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to conduct cross-site scripting (XSS) attacks. The vulnerability is caused due to an error in the way the MHTML (MIME Encapsulation of Aggregate HTML) protocol handler interprets MIME-formatted requests for content blocks within a document.
E-mail Print r 1   5 Comment(s)
Permalink for comment 460414
To read all comments associated with this story, please click here.
RE: Is this limited to IE?
by ingraham on Mon 31st Jan 2011 23:39 UTC in reply to "Is this limited to IE?"
Member since:

Just to answer my own question, yes, this appears to be limited to IE. InfoWorld has a story on it:

BTW, has anybody even HEARD of MHTML? I kinda like the idea; I wouldn't mind sending somebody an MHTML doc instead of a PDF, for example. But none of the other browsers support MHTML (which is why they're safe), and I've never encountered an MHTML file in the real world.

Reply Parent Score: 1