Microsoft Internet Explorer 5.5 SP1 Security Patch Telnet Update (Windows)

This update resolves a security vulnerability in Internet Explorer, and is discussed in Microsoft Security Bulletin MS01-015. Download now to prevent an unauthorized user from creating and executing programs on your computer. This vulnerability allows a Web site or HTML e-mail to start a Telnet session through Internet Explorer. By design, a Web site or HTML e-mail should be able to start a Telnet session, but it should not be able to select Telnet's operating mode when doing so. However, the flaw enables a Web site to bypass this restriction, which poses a security problem if you have installed Services for Unix 2.0 on your computer. The version of Telnet in Services for Unix 2.0 provides an operating mode which, if invoked by a Web site or HTML e-mail, could enable an attacker to stream an executable (.exe) file onto your computer. The .exe file could be executed automatically the next time you turn on your computer.