Microsoft has released a patch for the bug in Internet Explorer 5.5 SP2 and Internet Explorer 6.0 that allows websites to script the content of visitors’ cookies. Thanks Bus for the tip.
This update resolves the “Cookie Data in IE Can Be Exposed or Altered Through Script Injection” security vulnerability in Internet Explorer 5.5 SP2 and Internet Explorer 6.0, and is discussed in Microsoft Security Bulletin MS01-055. Download now to prevent a malicious user from reading the contents of cookies on your machine, which might contain personal information, or even altering the contents of the cookies on your machine, by hosting a Web page with a maliciously crafted URL. This URL can be hosted on a Web page or contained in an HTML email.
| Version number | 5.5 Service Pack 2.6.0 |
| Operating systems | Windows 9x, Windows NT, Windows 2000, Windows XP |
| Website | Microsoft |
| Download |