Poor, poor Microsoft. I'm not surprised to hear that they have once again opened another privacy hole without even realizing it. If one were particularly fiendishly evil, they could symlink this to a CGI script that dumps all sorts of information about the unsuspecting user. The perfect marketing tool, they would now have a list of people interested enough to bookmark it, and perhaps even their login, IP address, et cetera.

Well, even then, it would be quite limited in its badassery, in that you can't dump much from a single script. But combined with cookies, then, oh, boy.