Alakazam
11-09-2001, 08:00 PM
Thanks to Mike over at theinquirer (http://www.theinquirer.net/) for this:
IE 5.5 and IE 6.0
A HIGH SEVERITY RATING for versions 5.5 and 6.0 of Microsoft Internet Explorer has appeared on the firm's Web site, but no patch is yet available to plug the gap.
According to Microsoft, customers should think about disabling active scripting in the Internet Zone and the Intranet Zone.
And those using Outlook Express who have not set the software to use "Restricted Sites" had better do so as a matter of "best practice".
The problem means that cookie data can be exposed or altered by "script injection", and Microsoft does not yet have a patch available to fix the problem.
You can find the security bulletin from the Great Vole of Software here (http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS01-055.asp). µ
IE 5.5 and IE 6.0
A HIGH SEVERITY RATING for versions 5.5 and 6.0 of Microsoft Internet Explorer has appeared on the firm's Web site, but no patch is yet available to plug the gap.
According to Microsoft, customers should think about disabling active scripting in the Internet Zone and the Intranet Zone.
And those using Outlook Express who have not set the software to use "Restricted Sites" had better do so as a matter of "best practice".
The problem means that cookie data can be exposed or altered by "script injection", and Microsoft does not yet have a patch available to fix the problem.
You can find the security bulletin from the Great Vole of Software here (http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS01-055.asp). µ