Script within HTML can access Temporary Internet Files folder directly.
vulners.com/securityvulns/securityvulns:doc:11437