I'm working on a site that has a higher-than-normal concern for user security. I've recently been working on some CSS issues with older versions of IE (we support 7 and higher) and found that an easy solution to some of them would be the use of HTML Component files (.htc) to add certain CSS3 behaviors. http://msdn.microsoft.com/en-us/library/ms531018(v=vs.85).aspx
I was given an uncertain suggestion by someone that these methods could lead to a security issue, either on the part of compromising the client browser, or the server (the latter would surprise me). I've tried doing a bit of Google research but couldn't easily find very much mention of any such issues. Would someone here have more insight into this issue?