Internet Explorer Exposes User Files
Reported Feburary 16, 2000 by Microsoft
According to Microsoft" bulletin, "when a web server navigates a window from one domain into another one, the IE security model checks the server"s permissions on the new page.However, it is possible for a web server to open a browser window to a client-local file, then navigate the window to a page that is in the web site"s domain in such a way that the data in the client-local file is accessible to the new window. The data would only be accessible to the new window for a very brief period, but the result is that it could be possible for a malicious web site operator to view files on the computer of a visiting user. The web site operator would need to know (or guess) the name and location of the file, and could only view file types that can be opened in a browser window."