Suggest A Fix PC Support Forums > MS Alert: IE XMLDSO Java Class issue

Full Version: MS Alert: IE XMLDSO Java Class issue

Suggest A Fix PC Support Forums > Security > Security News and Warnings

Interceptor

Aug 21 2002, 12:17 AM

A vunerability has been reported in IE. A malicious user user can create HTML code containing an XML Java applet that will be able to access and send local files on a victim's system. This is due to an access control flaw in a legacy XML data source applet. What does this mean? Simply, this may allow to access a victim's local files and send them to the remote user.

There was no solution available from Microsoft at this time and disabling Java is the only workaround.

Reported by: Jelmer

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.