Slashdot Mirror

← Back to Stories (view on slashdot.org)

Major IE8 Flaw Makes "Safe" Sites Unsafe

Posted by kdawson on from the keep-your-scripts-to-yourself dept.

After this weekend's report of a dangerous flaw in IE (which Microsoft confirmed today), intrudere points out an exclusive report in The Register on a new hole in IE8 that could allow an attacker to pull off cross-site scripting attacks on Web sites that ought, by rights, to be safe from XSS. This is according to two anonymous sources, who told El Reg that Microsoft had been notified of the vulnerability a few months ago.

3 of 83 comments (clear)

  1. Re:See, Microsoft is right by shutdown+-p+now · · Score: 0, Troll

    Strangely enough, I'm torn between demanding a funny mod or an insightful one for you.

    +1, Bitter Truth?

  2. Re:In other news by palegray.net · · Score: 0, Troll

    Textmate :).

    --
    512 MB RAM, 20 GB disk, 200 GB transfer, five datacenters. $19.95/month.
  3. Re:See, Microsoft is right by mcgrew · · Score: 0, Troll

    I've had comments I meant to be funny modded "insightful". It shouldn't matter, modding it up will make it visible. Of course, "funny" won't help your karma any, but since he's AC the mod shouldn't affect him anyway.

    --
    Free Martian Whores!