The "download behavior" in Internet Explorer 5 allows remote attackers to read arbitrary files via a server-side redirect.Referenceshttp://www.securityfocus.com/bid/674https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-040http://www.ciac.org/ciac/bulletins/k-002.shtmlhttp://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ242542http://www.kb.cert.org/vuls/id/37828http://www.osvdb.org/11274
