Microsoft patches another critical flaws in IE

April 2, 2002

Microsoft released a security patch Thursday for two "critical" security flaws in its Internet Explorer Web browser.

The flaws affect Internet Explorer Versions 5.01, 5.5 and 6.0.

The first hole can lead to script execution in the "Local Computer Zone".

This flaw enables a malicious hacker to place a cookie with a malicious script and run it in the "Local Computer zone" where it could modify or delete files on a victim's PC .

The second flaw would enable an attacker to include code on a Web site that would automatically run an executable file already present on a user's PC once he or she visited the site.

All IE users are recommended to download the patch to fix these critical vulnerabilities. The patches include the functionality of all previously released security patches for IE.

Click here to download the patch from the Windows Update Web site.