Hi malware fighters,

Constructed round an old Firefox bug: Microsoft Internet Explorer File Upload Vulnerability

Microsoft Internet Explorer is prone to an information-disclosure vulnerability that allows attackers to gain access to the contents of arbitrary files (without you even noticing the website gets the data from your hard disk).

This issue stems from a design error resulting from the improper handling of form fields.

This issue is similar to the one described in BID 24725 (Mozilla Firefox OnKeyDown Event File Upload Vulnerability).

Read here: http://www.securityfocus.com/bid/25836/discuss

polonus

PS click the pic for animation

If you used the latest version of Internet Explorer (IE7)
then this wouldn’t concern you.
Another good reason not to use outdated (old) software.

Yeah…
Check for insecure applications with Secunia Software Inspector to update insecure applications.