Please do bother to read the rest of the article.

This is similar to sending malicious attachments with an email (which is just "text", after all) which the user's email client opens automatically.