Christmas Shopping writes with this excerpt from Kaspersky Labs' threatpost:
"Back in September, when Google launched the Google Chome Frame plug-in for Internet Explorer users, Microsoft immediately warned that the move would increase the attack surface and make IE users less secure. Now comes word that a security researcher in the Microsoft Vulnerability Research (MSVR) has discovered a 'high risk' security vulnerability that could allow an attacker to bypass cross-origin protections."
"Google has hurried out a patch," he adds.

http://tech.slashdot.org/story/09/11...e-Chrome-Frame