March 10, 1997 10:45 AM ET
Microsoft posts IE patch
By Margaret Kane

Microsoft Corp. has posted a patch for Internet Explorer on its Web site that the company says will fix three security flaws detected recently. The flaws would let a Web site operator build and hyperlink .LNK (shortcut) and .URL files that launch remote applications on a client system, send E-mail under someone else's name, or penetrate corporate firewalls and damage a hard drive. The patch to fix all three problems is available for download at www.microsoft.com/ie/security/download.htm. The problems were reported last week by students at Worcester Polytechnic Institute, in Worcester, Mass.; Massachusetts Institute of Technology, in Cambridge; and the University of Maryland, in College Park. Fixes are available for Versions 3.0 and 3.01 of Internet Explorer for Windows 95 and Windows NT 4.0. Copyright(c) 1997 Ziff-Davis Publishing Company. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of Ziff-Davis Publishing Company is prohibited. PC Week and the PC Week logo are trademarks of Ziff-Davis Publishing Company. PC Week Online and the PC Week Online logo are trademarks of Ziff-Davis Publishing Company. Send mail to PC Week