CVE-2001-0807
Internet Explorer 5.0, and possibly other versions, may allow remote attackers (malicious web pages) to read known text files from a client’s hard drive via a SCRIPT tag with a SRC value that points to the text file.
Date published : 2001-11-22
http://www.securityfocus.com/cgi-bin/archive.pl?id=1&mid=189341