Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
This document provides information about security considerations related to programming and reusing the browser. This document doesn't provide all you need to know about security issues—instead, use it as a starting point and reference for this technology area.
The following table lists features that, if used incorrectly, can compromise the security of your applications.
| Feature | Mitigation |
|---|---|
| IHTMLDocument2::domain | Set the IHTMLDocument2::domain property only if you must allow cross-domain scripting. Use a value determined on the server. Setting this property to a value determined on the client (like through the location object) could expose your site to attack from another site through Domain Name System (DNS) manipulation. |
Other Resources
MSDN Security Developer Center