Microsoft Corp. has posted a patch for Internet Explorer on its Web site that the company says will fix three security flaws detected recently.
The flaws would let a Web site operator build and hyperlink .LNK (shortcut) and .URL files that launch remote applications on a client system, send E-mail under someone else's name, or penetrate corporate firewalls and damage a hard drive.
The patch to fix all three problems is available for download at www.microsoft.com/ie/security/download.htm.
The problems were reported last week by students at Worcester Polytechnic Institute, in Worcester, Mass.; Massachusetts Institute of Technology, in Cambridge; and the University of Maryland, in College Park.
Fixes are available for Versions 3.0 and 3.01 of Internet Explorer for Windows 95 and Windows NT 4.0.