IE 8 To Get XSS Fix
In more than a month's time, a flaw that allows hackers to launch cross-site scripting (XSS) exploits against IE 8 should be fixed.
Microsoft has already patched an XSS hole, but security researchers have found new forms of XSS attacks, prompting the new patch.
This type of attack is pretty tricky. It requires a Web site that lets outsiders post content. Then those users have to click and follow a link to a malicious Web site.
Posted by Doug Barney on May 03, 2010