info
discussion
exploit
solution
references
Microsoft Internet Explorer XMLHTTP File Disclosure Vulnerability
jelmer <jelmer@kuperus.xs4all.nl> has provided the following working example:
http://www.xs4all.nl/~jkuperus/bug.htm
Privacy Statement
Copyright 2010, SecurityFocus