How does Internet Explorer 9 help protect me from cross-site scripting attacks?
Windows Internet Explorer has a Cross-Site Scripting (XSS) Filter feature that can help prevent one website from adding potentially malicious script code to another website.
XSS Filter analyzes how websites interact, and when it recognizes a potential attack, it will automatically block script code from running. When this happens, you will see a message in the Notification bar letting you know that the webpage was modified to help protect your privacy and security.
If the modified webpage doesn't work properly, in a new browser window, go to the website's home page, and then navigate to the webpage directly. If the page still doesn't work correctly, contact the website's administrator.