Microsoft says it will post a patch within a week for a new security hole discovered in its Internet Explorer 5.0 web browser.
The bug has the potential to expose users to malicious hackers.
A Bulgarian security expert found the flaw in the browser’s Active-X control code. It allows arbitrary programs to be executed on a user’s computer during a visit to a web page, or upon receipt of an Outlook e-mail. The arbitrary programs could be used for copying, overwriting, and storing data on the user’s hard drive.
Until a fix is available, Microsoft is advising concerned users to disable the Active-X controls and plug-ins by using the “Internet options” setting in IE5.
Details appear in the story at www.news.com.