This is a cumulative patch that includes the functionality of all previously released patches for Internet Explorer 5.01, 5.5 & 6.0. In addition, it eliminates the 4 newly discovered vulnerabilities.

In addition, this patch also includes a fix for Internet Explorer 6.0 SP1 that corrects the method by which Internet Explorer displays help information in the local computer zone. While we are not aware of a method to exploit this vulnerability by itself, if it were possible to exploit it, it could allow an attacker to read local files on a visiting user’s system. This patch also sets the Kill Bit on the Plugin.ocx ActiveX control which has a security vulnerability.

Affected Software:
Microsoft Internet Explorer 5.01
Microsoft Internet Explorer 5.5
Microsoft Internet Explorer 6.0

Patch availability
Download locations for this patch