Solved

How to stop this IE message?

Posted on 2013-06-23
12
1,095 Views
Last Modified: 2013-06-28
Inrernet Explorer has modified this page to prevent cross site scripting.
Getting it every time on Ebay and maybe other sites.
0
Comment
Question by:nickg5
12 Comments
 
LVL 18

Accepted Solution

by:
hopeleonie earned 185 total points
ID: 39269369
0
 
LVL 25

Author Comment

by:nickg5
ID: 39269376
It worked for Ebay but what are the disadvantages of changing it to "disable."
0
 
LVL 53

Expert Comment

by:COBOLdinosaur
ID: 39269399
what are the disadvantages of changing it

If it is disabled then you will be open to attack from malicious site that may inject scripting.

You can leave it enabled, and then then disable it as needed, or use a more secure browser like Firefox.

Cd&
0
 
LVL 25

Author Comment

by:nickg5
ID: 39269586
I have to go to Ebay every day and never got that message when I used MSE.
I switched from MSE to Trend Micro Titatium and Trend Micro is quick to label a website as dangerous. Trend Micro if fine with Ebay except for that script message above and it was with IE and I do not recall getting that message before today.

So, cross site scripting should not be something new that started today and only now did IE decide to give the message.
0
 
LVL 25

Author Comment

by:nickg5
ID: 39269647
I use both IE and FF due to two hotmail accounts open at the same time.
0
 
LVL 53

Expert Comment

by:COBOLdinosaur
ID: 39270013
Microsoft has been updating IE with the regular updates and part of the cleanup is to tighten security.

So, cross site scripting should not be something new that started today and only now did IE decide to give the message.

IE has had security issues for more than 10 years, some are still not fully addressed, and it is the least secure of the mainstream browsers. The lack of security has cost them a huge chunk of market share and to get back in the game they have to close the holes, but they cannot just do it in code like FF and Chrome because a lot of legacy applications need the security holes to work.  So they make security optional and it appears that now they have added a message about it.


Cd&
0
Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

 
LVL 25

Author Comment

by:nickg5
ID: 39275828
If it is disabled then you will be open to attack from malicious site that may inject scripting.
..........We have Trend Micro Titanium so maybe it will catch the sites that may inject scripting. But, what is the risk of "scripting" by a malicious site?
0
 
LVL 53

Assisted Solution

by:COBOLdinosaur
COBOLdinosaur earned 185 total points
ID: 39276468
Download code that allows your computer to accept commands from a remote server that turns it your computer into a zombie on a botnet
Steal your personal information.
Use your email client to send spam
install addware
install spyware
just about anything else you can think of (and probably some you haven't)

Cd&
0
 
LVL 53

Expert Comment

by:COBOLdinosaur
ID: 39276487
BTW Trend Micro Titanium should be able to catch injection.  I would never use anything but Kaspersky, but what you have should handle the AV tasks fine just don't switch to something weak like Norton or McAfee.

Cd&
0
 
LVL 41

Assisted Solution

by:Jackie Man
Jackie Man earned 130 total points
ID: 39283432
I think that you just need to add the websites, i.e. eBay and other websites which you trusts their security standard to the the list of trusted sites and disable XSS filter for trusted sites only.

http://www.ndm.ox.ac.uk/_asset/file/how-to-disable-xss-filter-for-trusted-sites-in-ie8.pdf
0
 
LVL 25

Author Comment

by:nickg5
ID: 39285853
Disabling was directly related to the title, but the other information is very helpful as well.
0
 
LVL 25

Author Closing Comment

by:nickg5
ID: 39285854
-
0

Featured Post

Enabling OSINT in Activity Based Intelligence

Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

Join & Write a Comment

Bada platform is becoming more and more famous this days and people talking about same. Some friends included those who have bada OS mobile asked me "what is bada?"and "what its features?". That encouraged me to research and write this article. [st…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Shows how to create a shortcut to site-search Experts Exchange using Google in the Chrome browser. This eliminates the need to type out site:experts-exchange.com whenever you want to search the site. Launch the Search Engine Menu: In chrome, via you…
The Task Scheduler is a powerful tool that is built into Windows. It allows you to schedule tasks (actions) on a recurring basis, such as hourly, daily, weekly, monthly, at log on, at startup, on idle, etc. This video Micro Tutorial is a brief intro…

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now