Microsoft announced that an update will be forthcoming (no date provided) to patch a recently revealed IE 6 browser flaw that leaves users vulnerable to unintentionally downloading malware through files from websites that appear legitimate. A description of this flaw, as well as a demonstration of its application, is provided by the security company Secunia.