Script from Internet/Intranet zone site can access any Microsoft Management Console's object.
vulners.com/securityvulns/securityvulns:doc:13793