>>>The cookie problem is being abused more than most people realize. Cookies can fire pre-existing scripts (MS scripts) to extract the GUID, installed apps, etc., automatically, to be retrieved the next time the user browses certain sites that have 'signed on' to these stealth spying adventures.
>>
>>Do you mean that IE will try to "act" (run code) upon cookies rather than just treat them as simple text as it should?
>
>Not only on cookies, but on system macros and scripts. How else do you think pixel bugs, email viri, etc., work? How can a simple cookie acquire the GUID and other info of the machine it is planted on unless it uses internal scripts to retrieve such information? How else can just browsing a rogue website cause malicious code to be downloaded and executed on the client PC? In fact, such an exploit was just announced this morning (15th) by George Guninski,
>http://www.guninski.com/popspoof.html and is already 25 days old!
>Or this one, http://www.guninski.com/vv2xp.html about which Microsoft was informed FOUR months ago.

Jerry;


I was happy with CP/M, Word Star 0.92 and my 300 baud modem on my S-100 Bus Computer, and LA-20 Printer. We have come a long way with computer technology. :)

Tom