CNET también está disponible en español.

Ir a español

Don't show this again

HolidayBuyer's Guide
Internet

Microsoft patches browser hole

The company releases a browser patch for a hole that lets malicious Web site operators steal files from a site visitor's computer.

Microsoft today released a browser patch for a hole that lets malicious Web site operators steal files from a site visitor's computer.

The hole, reported last month, lets Web site operators get around a restriction that keeps them from downloading files outside their Web site domain. Internet Explorer normally lets Web page authors download files within their own domain.

The bug lets Web site operators read files on the visitor's machine or local intranet and primarily affects workstations connected to the Internet, Microsoft said in a security bulletin rereleased today.

The patch is available for free download on Microsoft's Web site.