Vulnerability in MHTML Could Allow Information Disclosure

Microsoft is reporting that there is a vulnerability in all supported versions of Windows that could allow for information disclosure on a users system. Malicious scripts inserted into MHTML pages could allow an attacker to access information on a users system or take actions on a website on behalf of the targeted user.

Users are advised to impliment a number of workarounds until a fix has been provided. For workaround steps and more information about this vulnerability, please see

Posted by Anthony Paladino on January 31, 2011, in Handlers Log.

Purdue University, 610 Purdue Mall, West Lafayette, IN 47907, (765) 494-4600

© 2016 Purdue University | An equal access/equal opportunity university | Integrity Statement | Copyright Complaints | Maintained by ITaP

Trouble with this page? Disability-related accessibility issue? Please contact ITaP at

PDF files can be viewed in Adobe Acrobat Reader.