Polish hacker Michal Zalewski has ratcheted up his ongoing assault on Web browser security models, releasing details on serious flaws in fully patched versions of IE 6, IE 7 and Firefox 2.0…
I don’t know what to say…this is huge! This is a very large, easy to exploit vulnerability that exposes a site’s cookies to any malicious web site on the net.
A harmless proof-of-concept exploit can be found here.
Wait…i’m getting a vision…yes, it’s coming clearer…a Microsoft Security Patch is in your future.