Microsoft s Internet Explorer 8 browser offers a new set of filters designed to prevent some behaviorscross-site scripting (XSS) attacks. The bad news is that those same filters could be used to enable XSS attacks. That was the gist of a presentation offered by security researchers David Lindsay and Eduardo Vela Nava at the Black Hat Europe conference in Barcelona. The most-rewarded flaw is XSS, which is among those that are relatively cheap for organizations to identify.
Source: https://threatpost.com/ie8-open-xss-attacks-041610/73840/