Menu

IE Feedback: Looking Back, Forging Ahead

April 20th, 2011

IE9 users significantly impacted the engineering process and product with high quality, high value feedback. It is for this reason that we are pleased to announce that the Internet Explorer Feedback Program will remain open on an ongoing basis. Users continue to be able to search, reactivate, or log new bugs on Connect, and the…

Web Inspector: Understanding Stack Traces

April 20th, 2011

Finding errors in JavaScript code both during application development and when it’s already released is an important part of web development. We’ve recently added a mechanism for handling uncaught JavaScript exceptions and made some improvements in the tools that allow you to work with stack traces. Now it’s a good time to summarize the ways…

Hang Resistance in IE9

April 19th, 2011

IE9 is the most reliable browser available today in terms of hang resistance. In this post on IE reliability, we show how we engineered IE9’s hang resistance so that an unresponsive tab no longer affects the rest of the browser, similar to how IE is resistant to a crashing tab with Tab Isolation. We highlight…

Exploring ECMAScript 5 with a Simple Game of Poker

April 18th, 2011

Support for ECMAScript 5, the updated standard of the language commonly known as JavaScript, is part of our promise to ensure that the same markup and same script works across browsers. Over the past few months we’ve devoted more than a few blog posts to the topic including: ECMAScript 5: Reusable code ECMAScript 5: Arrays…

Summer WordCamps 2011

April 17th, 2011

Looking for something fun to do during your summer vacation? Why not check out a WordCamp! WordCamps are locally-organized casual conferences of, by, and for WordPress users, developers, and enthusiasts just like you. The focus of a WordCamp is to foster face-to-face connections and collaboration among the local WordPress crowd, but there are usually some out-of-towners…

The IE10 User-Agent String

April 15th, 2011

We recently announced IE10 Platform Preview 1. Aside from some exciting new features, this platform preview also includes the new IE10 user-agent string: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0) Overall this represents a natural evolution of the IE9 user-agent string with only two changes: The value of the “MSIE” token is now “10.0”…

[20110405] – Core – XSS Vulnerabilities

April 15th, 2011

Project: Joomla! SubProject: All Severity: Medium Versions: 1.6.1 and 1.6.0 Exploit type: XSS Vulnerabilities Reported Date: 2011-March-29 Fixed Date: 2011-April-14 Description Inadequate filtering causes XSS vulnerabilities. Affected Installs Joomla! version 1.6.1 and 1.6.0 versions Solution Upgrade to the latest Joomla! version (1.6.2 or later) Reported by Jeff Channell Contact The JSST at the Joomla! Security…

[20110409] – Core – Clickjacking

April 15th, 2011

Project: Joomla! SubProject: All Severity: Medium Versions: 1.6.1 and 1.6.0 Exploit type: Clickjacking Reported Date: 2011-March-30 Fixed Date: 2011-April-14 Description Inadequate protection leads to clickjacking vulnerability. Affected Installs Joomla! version 1.6.1 and 1.6.0 versions Solution Upgrade to the latest Joomla! version (1.6.2 or later) Reported by Aung Khant, YGN Ethical Hacker Group Contact The JSST…

[20110403] – Core – Information Disclosure

April 15th, 2011

Project: Joomla! SubProject: All Severity: Low Versions: 1.6.1 and 1.6.0 Exploit type: Information Disclosure Reported Date: 2011-March-26 Fixed Date: 2011-April-14 Description Inadequate error checking causes information disclosure. Affected Installs Joomla! version 1.6.1 and 1.6.0 versions Solution Upgrade to the latest Joomla! version (1.6.2 or later) Reported by High-Tech Bridge SA (Switzerland) Contact The JSST at…

[20110406] – Core – XSS Vulnerabilities

April 15th, 2011

Project: Joomla! SubProject: All Severity: Medium Versions: 1.6.1 and 1.6.0 Exploit type: XSS Vulnerabilities Reported Date: 2011-April-05 Fixed Date: 2011-April-14 Description Inadequate filtering causes XSS vulnerabilities. Affected Installs Joomla! version 1.6.1 and 1.6.0 versions Solution Upgrade to the latest Joomla! version (1.6.2 or later) Reported by Jeff Channell Contact The JSST at the Joomla! Security…