Jeremiah Grossman is doing a talk at BlackHat that was spawned via conversation he and I had a while back. Originally I was looking into creative ways for XSS to move out of the application later and into the other OSI layers. I spoke with him and he was able to take my idea from just that, an idea, to a working prototype. Without completely blowing his talk, all I’ll say, is that it will probably go a long way to legitimize XSS as an attack vector, far beyond what is currently known about it. If you happen to be in Las Vegas this summer, I’d suggest dropping on by to hear his talk.
I won’t actually be there. The time I talked there, I had a lot more free time on my hands than I do now, but I will probably be there for DefCon. If any of you webappsec folks want to grab a drink and you’re Las Vegas around that time let me know.