"HTML Applications (HTAs) are full-fledged applications," the page reads. "These applications are trusted and display only the menus, icons, toolbars, and title information that the Web developer creates. In short, HTAs pack all the power of Microsoft Internet Explorer--its object model, performance, rendering power, protocol support, and channel-download technology--without enforcing the strict security model and user interface of the browser."
[link|http://zdnet.com.com/2102-1104_2-5119072.html?tag=printthis|full story]
my experience with .hta is in fighting off spyware
searchdot.net uses msoffice.hta to hijack the browser
others will be able to launch IE invisibly in the background to spawn popups
A