Microsoft MHTML Security Advisory Released

FSOwner

FSOwner

FS Owner

Microsoft has released a new security advisory dealing with an information disclosure vulnerability in the MHTML (MIME Encapsulation of Aggregate HTML) protocol handler:


  • The impact of an attack on the vulnerability would be similar to that of server-side cross-site-scripting (XSS) vulnerabilities. For instance, an attacker could construct an HTML link designed to trigger a malicious script and somehow convince the targeted user to click it. When the user clicked that link, the malicious script would run on the user's computer for the rest of the current Internet Explorer session. Such a script might collect user information (eg., email), spoof content displayed in the browser, or otherwise interfere with the user's experience.
Further details can be found at Microsoft TechNet Security Advisories.

News Source:
Microsoft Security Response Center
 
You must log in or register to reply here.

Similar threads

FSOwner
Microsoft releases Security Advisory 2490606
Replies
0
Views
603
FSOwner
FSOwner
FSOwner
Microsoft Security Advisory (2416728)
Replies
0
Views
525
FSOwner
FSOwner
FSOwner
Microsoft Security Advisory 2269637 Released
Replies
0
Views
440
FSOwner
FSOwner
FSOwner
The one security tool every Windows user should know about
Replies
0
Views
512
FSOwner
FSOwner
FSOwner
Microsoft September '10 Security Updates Available
Replies
0
Views
431
FSOwner
FSOwner
Back
Top