ZDNet

Security gone awry: IE 8 XSS filter exposes sites to XSS attacks

[ UPDATE: Microsoft plans to ship an XSS filter update in June 2010to fix what is hopefully the last attack scenario ] The cross-site scripting filter that ships with Microsoft's Internet Explorer 8 ...
ZDNet

Microsoft to fix security hiccups in IE 8 XSS filter

[ Security gone awry: IE 8 XSS filter exposes sites to XSS attacks ] Microsoft shipped two separate updates recently -- MS10-002 and MS10-018 -- with defense-in-depth changes that addressed the bulk ...
eWeek

Microsoft to Update XSS Filter to Address Black Hat Attack

eWEEK content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More. Microsoft is planning an update to the cross-site ...
Threat Post

Bypass of Internet Explorer Cross-Site Scripting Filter Possible

Attackers are able to bypass the reflective cross-site scripting filter in Internet Explorer; the weakness is accepted by Microsoft as part of its design philosophy for the filter and will not be ...
Threat Post

XSS Filter Bypass Bug Found in Chrome and Safari

There is a bug in the anti-cross site scripting filter in Chrome and Safari that enables an attacker to bypass the filter in some cases and use an XSS flaw on a given site to compromise visitors’s ...
Infosecurity-magazine.com

Researchers reveal Internet Explorer 8 XSS filtering flaw

David Lindsay, a researcher at software security company Cigital, presented a paper entitled 'Abusing Internet Explorer 8's XSS Filters' at the Black Hat conference in Barcelona, Spain. The pair ...
IT News For Australia Business

Microsoft to patch Internet Explorer XSS filter in June

Microsoft will wait until June to release an additional patch for an Internet Explorer vulnerability that was recently demonstrated at the Black Hat EU conference. Speaking on the Microsoft Security ...