This is a funny bug found in Internet Explorer (and all other software where the HTML rendering libraries are used, such as Outlook and co.).
By including <input type crash> in your HTML code, it is actually possible to get Internet Explorer & co to crash! Talk about compliance.
Check out the bug report: Secunia – Advisories – Microsoft Shell Light-Weight Utility Library Denial of Service
Reportedly, the vulnerability can be exploited to crash the following applications:
– Windows Explorer
– Internet Explorer
– Outlook Express
NOTE: Other applications may also be affected.
There is no immidiate solution available.
If this is regarded as a serious risk, then don’t view untrusted HTML documents. Use another browser that isn’t linked to the vulnerable library when surfing the Internet.
Yet another good reason to switch to Opera!
Disclaimer: I am norwegian, and so is Opera Software. Unfortunately I don’t own any stocks in the company ;-)