Microsoft Internet Explorer has a buffer overflow vulnerability. A remote attacker could overflow a buffer and execute arbitrary code on the system with the privileges of the application, by sending a specially-crafted .mht file to the victim.
Microsoft Internet Explorer 5.5
Microsoft Internet Explorer 6.0
Currently we are not aware of any vendor-supplied patches for this issue.