Microsoft Corporation has released a patch for the Internet Explorer security vulnerability mentioned earlier this week in WinInfo. The problem involves something Microsoft calls an "Untrusted Scripted Paste," where a malicious Web site could read files from a user's system, assuming they knew the exact name and location of those files (which is not difficult on a typical Windows system, certainly).

The patch is available from the Microsoft Security Web site