Page is a not externally linkable
py9jmas - 1:37 pm on Jul 9, 2004 (gmt 0)
From [secunia.com...] The security flaw is MS Window's protocol handling. The patch from Mozilla is a workaround for a MS Windows flaw.
This is a Mozilla flaw, not a windows flaw.
The shell: URI handler is inherently insecure and should only be accessed from a few trusted sites - or not from a browser at all. Multiple exploits in Internet Explorer also utilise "shell:" functionality.