Microsoft Internet Explorer 5.x Security Patch MSHTML Update (Windows)
The update fixes these security vulnerabilities in MSHTML.DLL, which is the parsing engine for HTML in Internet Explorer: A privacy issue in which the "IMG SRC" tag could be used to determine information about the files on a user's computer, although it would not allow those files to be read or changed. A new variant of a previously-identified cross-frame security vulnerability that could allow a malicious web site operator to execute a script on the web site and gain privileges on visiting usersÃƒÂ¢?? machines that are normally granted only to their trusted sites. A new variant of a previously-identified untrusted scripted paste vulnerability that could allow a malicious web site operator to view contents of a visiting userÃƒÂ¢??s clipboard.