Mictlantecuhtli
Posts: 4,049 +13
This is a bit old story, but I didn't see threads about this.
Well there's good news - no need to care about browser's security holes as it will be bypassed completely.
Microsoft patents 'HTML applications'
Microsoft was awarded on Tuesday a patent by the US Patents and Trademarks Office on writing Windows applications in HTML, so making it possible to bypass the built-in security that browsers offer.
According the application, the patent (no. 6,662,341) covers writing a standard HTML file that runs in its own window outside of the browser. This means, according to the filing, that the author of an HTML application file won't face the security constraints imposed by a browser. This relaxed security allows an HTML author to do things such as: read from a user's local computer; write to a user's local computer and perform scripting of frames between domains.
...
Microsoft's patent appears to be platform agnostic, making it likely to apply to all operating systems including Linux and Unix. The operating system would recognise files to be run as applications by the HTML application file extension, .hta.
Well there's good news - no need to care about browser's security holes as it will be bypassed completely.