Vulnerability in MHTML Could Allow Information Disclosure

Microsoft is reporting that there is a vulnerability in all supported versions of Windows that could allow for information disclosure on a users system. Malicious scripts inserted into MHTML pages could allow an attacker to access information on a users system or take actions on a website on behalf of the targeted user.

Users are advised to impliment a number of workarounds until a fix has been provided. For workaround steps and more information about this vulnerability, please see https://www.microsoft.com/technet/security/advisory/2501696.mspx



Posted by Anthony Paladino on January 31, 2011, in Handlers Log.

Purdue University, 610 Purdue Mall, West Lafayette, IN 47907, (765) 494-4600

© 2016 Purdue University | An equal access/equal opportunity university | Integrity Statement | Copyright Complaints | Maintained by ITaP

Trouble with this page? Disability-related accessibility issue? Please contact ITaP at itap@purdue.edu.

PDF files can be viewed in Adobe Acrobat Reader.