[原文]Microsoft Internet Explorer 7.0 Beta3 and earlier allows remote attackers to cause a denial of service (crash) via a "text/html" HTML Content-type header sent in response to an XMLHttpRequest (AJAX).
Microsoft Internet Explorer contains a flaw that may allow a remote denial of service. The issue is triggered when a user visits a malicious web server that returns a specially crafted html page, and will result in loss of availability for the browser.
Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workaround(s):