Microsoft Internet Explorer User Security Confirmation Bypass Vulnerability

Microsoft Internet Explorer User Security Confirmation Bypass Vulnerability

Reportedly, Microsoft Internet Explorer is affected by a vulnerability that allows users to bypass security confirmation. This issue is due to a design error that allows malicious users to trivially bypass the requirement for user confirmation.

An attacker may leverage this issue by hosting a web page or pages designed to bypass the required user confirmation; this would facilitate the execution of arbitrary client-side scripts such as JavaScript and ActiveX objects in the browsers of unsuspecting users that visit the site.