navigate sub-frames accross different domains

[MSNews]

Setting this to disable fixed the IE6 frame injection vulnerability(after
applying latest patches), why wasnt it set there by default? anybody hear
anything from MS?

CR

 

[LuckyStrike]

Because IE is both a "user friendly" (hate that term), and malicious
web-site friendly browser... that's why. <s>

In MSN SLATE (Disclosure: Microsoft owns Slate.)
Are the Browser Wars Back? How Mozilla's Firefox trumps Internet Explorer.
By Paul Boutin
http://slate.msn.com/id/2103152/
--
LuckyStrike
(e-mail address removed)

How to make a good newsgroup post:
http://www.dts-l.org/goodpost.htm
http://home.satx.rr.com/badour/html/post.html

 

[LuckyStrike]

I should have also added this bit of info:

Ironically - but factually - If one disables the "Navigate sub-frames across
different domains", one cannot access posts within the MS-CDO Web Page
Community Newsgroups. Since many (most) may still rely upon that for this
purpose, it is advised to have it Enabled or at least set on Prompt, to do
so. So, this "fix" has broken that Web site, and who knows which others as
well.