Home > slashdot > IE8′s XSS Filter Exposes Sites To XSS Attacks

IE8′s XSS Filter Exposes Sites To XSS Attacks

April 19th, 2010 04:22 admin Leave a comment Go to comments

Blue Taxes writes “The cross-site scripting filter that ships with Microsoft’s Internet Explorer 8 browser can be abused by attackers to launch cross-site scripting attacks on websites and web pages that would otherwise be immune to this threat. The IE8 filter works by scanning outbound requests for strings that may be malicious. When such a string is detected, IE8 will dynamically generate a regular expression matching the outbound string. The browser then looks for the same pattern in responses from the server. If a match is made anywhere in the server’s response, the browser assumes that a reflected XSS attack is being conducted and the browser will automatically alter the response so that the XSS attack cannot succeed. The researchers figured out a way to use IE8′s altered response to conduct simple abuses and universal cross-site scripting attacks, which worked against sites that would not otherwise have been vulnerable to XSS.” Here is the researchers’ backgrounder (PDF) on the attack. Microsoft says that they have issued two patches that address the issue, but the researchers insist that holes remain.

Source: IE8′s XSS Filter Exposes Sites To XSS Attacks

Related Articles:

  1. Telstra Fears LulzSec Attacks, Hesitates On Internet Filter
  2. Internet Explorer 0-day Attacks On US Nuke Workers Hit 9 Other Sites
  3. Attacks Targeting Classified Ad Sites Surge
  4. Researchers Develop “Tea Bag” Water Filter
  5. Major IE8 Flaw Makes "Safe" Sites Unsafe
blog comments powered by Disqus