2001-11-22 05:00:00
mitre
PUBLISHED
Internet Explorer 5.0, and possibly other versions, may allow remote attackers (malicious web pages) to read known text files from a clients hard drive via a SCRIPT tag with a SRC value that points to the text file.