Microsoft Internet Explorer textarea.defaultValue suffers from a memory disclosure vulnerability.