2000-01-04 05:00:00
mitre
PUBLISHED
Internet Explorer 4.01 allows remote attackers to read arbitrary files by pasting a file name into the file upload control, aka untrusted scripted paste.