CVE-2004-2291 - Antiperiodic Spare
Description
Microsoft Windows Internet Explorer 5.5 and 6.0 allows remote attackers to execute arbitrary code via an embedded script that uses Shell Helper objects and a shortcut (link) to execute the target script.
Reference
http://www.securityfocus.com/archive/1/348688 http://www.securityfocus.com/bid/9335