Microsoft Internet Explorer (IE) fails to properly handle HTA files. This vulnerability may allow a remote attacker to execute arbitrary code.
HTML Application (HTA)
If a remote attacker can persuade a user to access a specially crafted HTML page, that attacker may be able to execute arbitrary code with the privileges of the compromised user.
Apply an Update
This vulnerability was reported by Jeffrey van der Stad.
This document was written by Jeff Gennari
|Date First Published:||2006-04-11|
|Date Last Updated:||2006-04-12 11:48 UTC|