Microsoft Corporation acknowledged yet another bug in Internet Explorer 5.0 (IE 5) this week; this one could allow malicious Web site operators to view files on a user's local hard drive. The bug, which affects the JScript feature in Internet Explorer, also affects IE 4.01. Fortunately, the bug doesn't allow hackers to delete or modify files on the user's system.
Microsoft is working on a fix for the system. In the meantime, the non-fix is to disable the Active Scripting feature in Internet Explorer. For more information, please visit Microsoft's Security Web site