Internet Explorer is a web browser that is subjected to many criticisms. Most of the criticism concerns its security architecture and its degree of support of open standards. Microsoft Internet Explorer, abbreviated IE or MSIE, is a proprietary graphical web browser made by Microsoft and currently available as part of Microsoft Windows. ... Icons for Web browser shortcuts on an Apple computer (Safari, Internet Explorer, and Firefox). ... Computer security is a field of computer science concerned with the control of risks related to computer use. ... Open Standards are publicly available specifications for achieving a specific task. ...

Criticisms regarding security

Internet Explorer comes under heavy scrutiny from the computer security research community, in part due to its sheer ubiquity. Exploitation of Internet Explorer's security holes has earned IE the reputation as the least secure of the major browsers. Computer security is a field of computer science concerned with the control of risks related to computer use. ... In computer software a security vulnerability is a software bug that can be used deliberately to violate security. ... The following is a list of web browsers. ...

As of December 16, 2005, security advisory site Secunia counted 21 unpatched security flaws for Internet Explorer 6, many more and older than for any other browser, even in each individual criticality-level, although some of these flaws only affect Internet Explorer when running on certain versions of Windows or when running in conjunction with certain other applications. December 16 is the 350th day of the year (351st in leap years) in the Gregorian Calendar. ... 2005 (MMV) was a common year starting on Saturday of the Gregorian calendar. ... Secunia is a computer security service provider best known for tracking vulnerabilities in more than 4500 pieces of software and operating systems. ... The following tables compare general and technical information for a number of web browsers. ...

Another advisory site SecurityFocus counts 27 unpatched security flaws for Internet Explorer 6 on Windows XP SP 2, but even many more and older on earlier versions of Windows.

See computer security for more details about the importance of unpatched known flaws. Computer security is a field of computer science concerned with the control of risks related to computer use. ...

On June 23, 2004, an attacker using compromised Microsoft IIS Web servers on major corporate sites used two previously-undiscovered security holes in IE to insert spam-sending software on an unknown number of end-user computers ^{[1] [2] [3]}. This malware became known as Download.ject and it caused users to infect their computers with a backdoor and key logger merely by viewing a web page. Infected sites included several financial sites. June 23 is the 174th day of the year (175th in leap years) in the Gregorian Calendar, with 191 days remaining. ... 2004 (MMIV) was a leap year starting on Thursday of the Gregorian calendar. ... Microsoft Internet Information Services (IIS, sometimes called Server or System) is a set of Internet-based services for servers using Microsoft Windows. ... A typical spam advertisement Email spam is a subset of spam that involves sending nearly identical messages to thousands (or millions) of recipients. ... Malware (a portmanteau of malicious software) is software designed to infiltrate or damage a computer system, without the owners consent. ... In computing, Download. ... A backdoor in a computer system (or a cryptosystem, or even in an algorithm) is a method of bypassing normal authentication or obtaining remote access to a computer, while intended to remain hidden to casual inspection. ... Keystroke logging is a diagnostic used in software development that captures the users keystrokes. ...

Art Manion, a representative of the United States Computer Emergency Readiness Team (US-CERT) noted in a vulnerability report that the design of IE6 SP1 makes it difficult to secure. He stated that: The United States Computer Emergency Readiness Team (US-CERT) is part of the National Cyber Security Division of the United Statess Department of Homeland Security. ...

There are a number of significant vulnerabilities in technologies relating to the IE domain/zone security model, local file system (Local Machine Zone) trust, the Dynamic HTML (DHTML) document object model (in particular, proprietary DHTML features), the HTML Help system, MIME type determination, the graphical user interface (GUI), and ActiveX. … IE is integrated into Windows to such an extent that vulnerabilities in IE frequently provide an attacker significant access to the operating system.

Manion later clarified that most of these concerns were addressed in 2004 with the release of Windows XP Service Pack 2, and other browsers have now begun to suffer the same vulnerabilities he identified in the above CERT report. [4]

Note that Windows XP Service Pack 2 is not available for earlier versions of Windows, including Windows 9x, NT and 2000.

In addition, some security exploits associated with Internet Explorer are made possible through normal usage patterns of users of Microsoft Windows. For example, in Windows XP, it is the default system behavior to allow normal users to log into accounts with administrator privileges for everyday computer use. In this situation, an exploit which allows a cracker to run arbitrary code effectively gives away control of the entire computer. This would be the case for any browser which ran with unrestricted privileges. Because the everyday use of root accounts for normal users is rare on other operating systems, attacks which rely upon inappropriately restricted browser processes are most often targeted at Windows-based browsers. However, many programs on Windows do not work or work poorly without administrator privileges, so what are considered normal security practices on other operating systems are sometimes impractical to perform on Windows. On many computer operating systems, superuser is the term used for the special user account that is controlled by the system administrator. ...

Many security analysts attribute IE's frequency of exploitation in part to its ubiquity, since its market dominance makes it the most obvious target. However, many critics argue that this is not the full story; the Apache HTTP Server has a much larger market share than Microsoft IIS, yet Apache has had fewer (and generally less serious) security vulnerabilities than IIS. Microsoft's Craig Mundie has admitted that Microsoft's products were "less secure than they could have been" because it was "designing with features in mind rather than security." Apache HTTP Server is a free software/open source HTTP web server for Unix-like systems (BSD, Linux, and UNIX systems), Microsoft Windows, Novell NetWare and other platforms. ...

As a result of its many problems, some security experts, including Bruce Schneier ^[5] and open source advocate David A. Wheeler ^[6], recommend that users stop using Internet Explorer for normal browsing, and switch to a different browser instead. Several technology columnists have suggested the same ^{[7] [8]}. On July 6, 2004, US-CERT released an exploit report in which the last of seven workarounds was to use a different browser, especially when visiting untrusted sites. In December 2004, Pennsylvania State University issued an alert to students and staff telling them to drop IE and use an alternative. Bruce Schneier Bruce Schneier (born January 15, 1963) is an American cryptographer, computer security specialist, and writer. ... Open source refers to projects that are open to the public and which draw on other projects that are freely available to the general public. ... Categories: People stubs | 1965 births | Wikipedians with article ... July 6 is the 187th day of the year (188th in leap years) in the Gregorian Calendar, with 178 days remaining. ... 2004 (MMIV) was a leap year starting on Thursday of the Gregorian calendar. ...

Component Object Model

Many of IE's security issues are related to components based on Component Object Model (COM). The embedding of COM into the Internet Explorer via ActiveX or Browser Helper Objects (BHO) created a combination of functions that provided a gateway for computer virus, trojan and spyware infections. Component Object Model (COM) is a Microsoft platform for software componentry introduced by Microsoft in 1993. ... In programming, the Component Object Model (COM), also known as ActiveX, is a Microsoft technology for software components. ... Add-on Manager from Windows XP SP2 Internet Explorer A Browser Helper Object (BHO) is a DLL module designed as a plugin for Microsofts Internet Explorer web browser to provide added functionality. ... In computer security technology, a virus is a self-replicating program that spreads by inserting copies of itself into other executable code or documents. ... This article is about computer system security. ... Malicious websites may attempt to install spyware on readers computers. ...

These malware attacks mostly depend on ActiveX for their activation and propagation to other computers. Microsoft has recognized the problem with ActiveX since 1996 when Charles Fitzgerald, program manager of Microsoft's Java team said, "If you want security on the 'Net', unplug your computer. … We never made the claim up front that ActiveX is intrinsically secure." Malware (a portmanteau of malicious software) is software designed to infiltrate or damage a computer system, without the owners consent. ...

ActiveX controls, once run, have all the users' privileges instead of the limited privileges granted by competing approaches (like Java and JavaScript); ActiveX controls are also non-standard and are not portable to non-Windows platforms. As pointed out by Professor Edward Felten of Princeton University: Edward William Felten (born March 25, 1963) is a professor of computer science and public affairs at Princeton University. ... Princeton University, incorporated as The Trustees of Princeton University, located in Princeton, New Jersey, is the fourth-oldest institution to conduct higher education in the United States. ...

ActiveX security relies entirely on human judgment. ActiveX programs come with digital signatures from the author of the program and anybody else who chooses to endorse the program. … The main danger in ActiveX is that you will make the wrong decision about whether to accept a program. … The most dangerous situation, though, is when the program is signed by someone you don't know anything about. You'd really like to see what this program does, but if you reject it you won't be able to see anything. … The only way to avoid this scenario is to refuse all programs, no matter how fun or interesting they sound, except programs that come from a few people you know well.

ActiveX security relies on security zones and digital signing, which are not as reliable as other measures like sandbox security model and same origin policy. It is explained in an O'Reilly book, "Malicious Mobile Code": For the Wikipedia sandbox for editing experiments see Wikipedia:Sandbox This article is about the computer security model. ...

ActiveX's biggest problem is the way it incorrectly marks controls Safe for Scripting. Already used in several email worm attacks, these types of holes continue to appear. If Microsoft cannot correctly determine the safety and appropriateness of its own system controls, how can vendors be expected to? Following that problem is the growing use of unsigned code. The digital signing process is technical and expensive. Most ActiveX controls on the Web are unsigned. Many of those that are signed, are expired. I rarely come across a control that is signed and current. If ActiveX's security lives or dies on whether end-users correctly choose to trust or not trust unsigned controls to run, it appears doomed unless digital signing of code becomes widespread. If ActiveX controls become standardized across the world's web sites, as expected, we will surely see a rise in malicious code for ActiveX.

The security problems of ActiveX were first demonstrated in February 1997 by the Chaos Computer Club (CCC), who demonstrated an ActiveX control that could communicate with an installation of Intuit's Quicken financial software on a user's hard drive to automatically transfer money from a user's account to CCC's bank account. The Chaos Computer Club (CCC) is one of the biggest and most influental hacker organisations. ... Intuit Inc. ... Intuit Logo Intuit, Inc. ...

The United States Department of Defense (DoD) defines ActiveX as a category 1 (maximum risk) mobile code technology, and strictly limits how ActiveX can be used in DoD systems. The United States Department of Defense, abbreviated as DoD or DOD and sometimes called the Defense Department is a civilian Cabinet organization of the United States government. ...

Other experts stipulate that the dangers of ActiveX have been overstated and there are safeguards in place. Larry Seltzer of eWeek notes:

While there has been a striking lack of actual evidence that ActiveX is unsafe, there has been no shortage of baseless assertions and cheap shots against it. My favorite was the "Internet Exploder" incident in which Sun actually paid someone to write a malicious ActiveX control. I was there at JavaOne when they demonstrated it (I think it was 1997). The test system brought up all the warning dialogs about the program that you usually get and the Sun employee actually had the nerve to keep whacking on the enter key quickly so they would close as quickly as possible and didn't mention that there were any such warnings. Meanwhile, they also didn't mention that a signed Java applet could also perform dangerous privileged operations and would provide similar warnings. Most ActiveX criticism is simply uninformed, but this example was hypocritical and dishonest.

The forth-coming Microsoft AntiSpyware, which is currently in beta, monitors BHOs in Internet Explorer on Windows 2000, XP and Server 2003, and will warn the user before a new BHO is installed. Microsoft AntiSpyware, also known as Windows AntiSpyware, is a piece of software designed to remove, quarantine or prevent a spyware presence on Microsoft Windows 2000, Windows XP and Windows Server 2003 operating systems. ...

Patches

Critics have claimed that security fixes take too long to be released after discovery of the problems, and that the problems are not always completely fixed. After Microsoft released patches to close holes in its general operating system in February 2003, 200 days after their initial report (instead of 30-60 days), Marc Maifrett, Chief Hacking Officer of eEye Digital Security, said: "If it really took them that long technically to make (and test) the fix, then they have other problems. That's not a way to run a software company." The Register criticized Maifrett for publicizing a security hole leading to the creation of the Code Red worm, arguing that "had they not made such a grand public fuss over their .ida hole discovery and their SecureIIS product's ability to defeat it, it's a safe bet that Code Red would not have infected thousands of systems." The title given to this article is incorrect due to technical limitations. ... The Register (El Reg to its staff) is a British technology news website focusing on the computer industry. ... The Code Red worm was a computer worm released via the Internet on July 13, 2001 affecting computers running Microsofts Internet Information Server (IIS) web server. ...

Microsoft attributes the perceived delays to rigorous testing. The testing matrix for Internet Explorer demonstrates the complexity and thoroughness of corporate testing procedures. The browser is released in 26 different languages on many different Windows platforms. Therefore, it is estimated that each patch is tested on at least 237 installations.

Spyware, adware and Windows XP SP2

Spyware and adware, like other malware, generally target Windows / Internet Explorer based systems. Older spyware attacks have largely been mitigated by security improvements in Windows XP SP2, but newer attacks against Internet Explorer allow the installation of spyware on SP2. Microsoft advises against installing SP2 on a system which is already infested with spyware, as it can cause the system to become unbootable: Malicious websites may attempt to install spyware on readers computers. ... Adware or advertising-supported software is any software package which automatically plays, displays, or downloads advertising material to a computer after the software is installed on it or while the application is being used. ... Malware (a portmanteau of malicious software) is software designed to infiltrate or damage a computer system, without the owners consent. ...

Failure to clean up spyware and adware on your computer before installing SP2 can cause issues and in some cases make your computer difficult to restart. You may not even know that spyware or adware programs are installed on your system. And some spyware or adware programs may not cause serious issues with SP2, but it's a good idea to run spyware and adware removal programs before installing SP2.

Depending on the type of spyware installed, removing it in preparation for an SP2 upgrade can be as simple as running an anti-spyware tool, or in serious cases require manual editing of the Windows Registry. Nevertheless, security experts generally recommend installing Service Pack 2. Registry has several meanings, all of which generally relate to its original or historical meaning as a written, official or formal record of information, or the place where such records are kept. ...

Criticisms regarding support of open standards

The Internet Explorer box model bug in quirks mode

During the browser wars of the late 1990s, modifications of Internet Explorer and Netscape Navigator were focused on the addition of non-standard features. This is in contrast to more recent browsers which have been designed with web standards in mind. Since version 5, there have been no significant changes in IE's Trident rendering engine. As a result, as of 2005, IE lags behind in support for standards. Illustration of the Internet Explorer box model bug File links The following pages link to this file: Internet Explorer Internet Explorer box model bug Categories: GFDL images ... Illustration of the Internet Explorer box model bug File links The following pages link to this file: Internet Explorer Internet Explorer box model bug Categories: GFDL images ... The difference between the World Wide Web Consortiums width and Internet Explorers width of a block-level element The Internet Explorer box model bug is one of the best-known bugs in a popular implementation of Cascading Style Sheets (CSS). ... A rough estimation of the usage share of major web browsers by layout engines over time. ... The 1990s decade refers to the years from 1990 to 1999, inclusive, the last decade of the 20th Century. ... Netscape Navigator, also known simply as Netscape, was a proprietary web browser that was extremely popular during the 1990s. ... The World Wide Web Consortium (W3C) is a consortium that produces standards—recommendations, as they call them—for the World Wide Web. ... Trident (also known as MSHTML) is the name of the layout engine for the Microsoft Windows version of Internet Explorer. ... A web browsers layout engine takes content (HTML, XML, images, etc. ...

Although each version of IE has improved standards support, including the introduction of a "standards-compliant mode" in version 6, the core standards that are used to build web pages (HTML and CSS) are still implemented in an incomplete and incorrect fashion. For example, there is no support for the <abbr> element which is part of the HTML 4.01 standard, and there are bugs in the implementation of float-margins for the CSS1 standard. The Internet Explorer box model bug is one of the best-known bugs in Internet Explorer's implementation of CSS. A piece of HTML code with syntax highlighting In computing, Hypertext Markup Language (HTML) is a markup language designed for the creation of web pages with hypertext and other information to be displayed in a web browser. ... In computing, Cascading Style Sheets (CSS) is a stylesheet language used to describe the presentation of a document written in a markup language. ... The difference between the World Wide Web Consortiums width and Internet Explorers width of a block-level element The Internet Explorer box model bug is one of the best-known bugs in a popular implementation of Cascading Style Sheets (CSS). ...

Because of its market dominance, some web developers only test their websites with Internet Explorer. Some developers also use non-standard extensions offered by Internet Explorer. This can cause pages to be rendered incorrectly in other browsers. In the worst case, it could block the users of other browsers from accessing the sites created by such developers. Critics feel that this is the execution of the final step of embrace, extend and extinguish (EEE): the extinguish stage. Microsoft has publicly stated that it aims to embrace and extend popular standards and existing work. ...

Graphics standards

The lack of support of PNG alpha channel prior to 7.0

The lack of support for PNG alpha channel results in a reduced usage of the PNG image format on web pages. Alpha channel is a feature that, although being an optional part of the specification, distinguishes PNG from other formats like GIF or JPEG. In Internet Explorer, the transparent part of the image will be displayed as gray, white or other colors, depending on the image editor in which the PNG image was created. Microsoft documented a workaround on its support website ^[9], and the IE developers are aware of the missing functionality, as evidenced by a posting on IE developer Dave Massey's weblog ^[10]. This issue will be fixed in the upcoming version 7. Another less known bug is that when the PNG file is either 4097 or 4098 bytes in size, the image will be ignored and only the picture placeholder image will appear ^[11]. I Love RSS image by Bryan Bell [1] File links The following pages link to this file: Internet Explorer Image:IE PNG bug. ... I Love RSS image by Bryan Bell [1] File links The following pages link to this file: Internet Explorer Image:IE PNG bug. ... A PNG image with an 8-bit transparency layer (top), overlayed onto a chequered background (bottom). ... In computer graphics, alpha compositing is often useful to render image elements in separate passes, and then combine the resulting multiple 2D images into a single, final image in a process called compositing. ... See also Category:Graphics file formats Here is a summary of the most common graphics file formats: Some file formats, e. ... A rotating globe in GIF format. ... A photo of a flower compressed with successively lossier compression ratios from left to right. ... Image of the Wikimedia Commons logo. ... A byte is commonly used as a unit of storage measurement in computers, regardless of the type of data being stored. ...

Other than PNG, Internet Explorer also does not support progressive display of progressive JPEG ^[12]. Progressive JPEG divides the file into a series of scans. The user agent should display progressive JPEG from lower quality scans to higher quality scans during transmission of the file. The user should see a gradual improvement of the quality of the image. Similar interlacing problem happens on PNG, where the 2D interlaced PNG is rendered as 1D interlacing.

Interlacing or progressive display was quite useful in the past since many users (especially home users) were on dial-up access where the bandwidth is very limiting. However, in Internet Explorer the image was not rendered until the completion of download. Fortunately (for some users) this problem is less significant now due to the introduction of Broadband Internet access. Dial-up access is an inexpensive but slow form of Internet access in which the client uses a modem connected to the computer and a telephone line to dial the Internet service providers (ISP) node, a dial-up server type such as the Point-to-Point Protocol and TCP... Bandwidth is a measure of frequency range, measured in hertz, of a function of a frequency variable. ... A WildBlue Satellite Internet dish. ...

XHTML

Internet Explorer's support of XHTML (the successor to the standard document markup language HTML) is incomplete, although no claim of any XHTML support was ever made. Rather, XHTML 1.0 was intentionally designed to be usable by HTML 4.0 user agents, like Internet Explorer, if certain document authoring guidelines for backward compatibility were followed. Furthermore, when accessing XHTML documents over a network, such support by non-XHTML-aware browsers is predicated on the documents being served with a MIME type of text/html. To the extent that these requirements are met, IE supports XHTML. XHTML has since matured, and it is now possible to author modular documents that cannot be rendered in a non-XHTML-aware browser like Internet Explorer. Furthermore, the use of the text/html MIME type is now deprecated in XHTML 1.0 Strict and XHTML 1.1, in favor of application/xhtml+xml. Internet Explorer does not recognize this MIME type, so instead of rendering the page, a file download prompt is presented to the user. It is possible to force IE to show application/xhtml+xml pages as either HTML or generic XML, but this workaround involves the manual editing of Windows registry ^[13]. By forcing XHTML to be interpreted as HTML, it also removes the advantages of using an XML parser, like well-formedness checking. Despite the advent of application/xhtml+xml, many XHTML documents on the web are still served with the text/html type in order to make XHTML documents renderable in Internet Explorer. Some consider this practice harmful as it could result in proliferation of malformatted XHTML documents ^[14]. The Extensible HyperText Markup Language, or XHTML, is a markup language that has the same expressive possibilities as HTML, but a stricter syntax. ... Multipurpose Internet Mail Extensions (MIME) is an Internet Standard for the format of e-mail. ... In computing, the Windows registry is a database which stores settings and options for the operating system for Microsoft Windows 32-bit versions. ...

HTTP and MIME

Unlike other browsers, Internet Explorer does not obey MIME types specified in the MIME Content-Type header. For example, a document sent as text/plain containing HTML-like tags will be interpreted as a HTML document, while it was intended to be displayed as a plain text document. For this example, it is possible to change this behavior by manually editing the registry, a thing that most regular users will not or can not do.

Internet Explorer does not fully support HTTP/1.1 content negotiation, because the browser does not specify, in its requests, what MIME type and character encodings it can accept. Content negotiation is a technique whereby an HTTP server uses the browser's—ultimately, the user's—preferences for media (MIME) type, languages, character encoding, and transfer encoding (for example, compression) in order to determine the best representation of a resource to send to a user agent, when multiple representations are available. An example would be the negotiation of image format (such as SVG, PNG, or GIF), and document format (WML, XHTML, or HTML, for instance). A character encoding consists of a code that pairs a set of characters (representations of graphemes or grapheme-like units, such as might appear in an alphabet or syllabary for the communication of a natural language) with a set of something else, such as numbers or electrical pulses, in order...

CSS

Some argue that CSS support in Internet Explorer is far less adequate than feature checklists suggest. While Internet Explorer recognizes many of the CSS Level 1 features, it routinely misinterprets them in most surprising and unexpected ways. Therefore, Internet Explorer's support of CSS Level 1 should be considered partial and inadequate. Internet Explorer offers virtually no support for new features of CSS Level 2 (inline-block and vertical-align: middle being the notable exceptions), therefore its level of CSS Level 2 conformance is best described as "larval".

One of Internet Explorer's most famous CSS bugs is the Internet Explorer box model bug, where the width as defined by Internet Explorer is different from the one specified by the W3C. As a result, webmasters had to design webpages separately for Internet Explorer and other browsers, or otherwise implement workarounds to ensure the appearance of their webpages in Internet Explorer is not affected detrimentally. In version 6, Microsoft addressed this issue by implementing the W3C box model, if "standards mode" was enabled, which is done by defining a supported DOCTYPE on the first line of the HTML output. Also noteworthy is the addition of Microsoft's original box model implementation to the CSS3 spec. The difference between the World Wide Web Consortiums width and Internet Explorers width of a block-level element The Internet Explorer box model bug is one of the best-known bugs in a popular implementation of Cascading Style Sheets (CSS). ... A webmaster (or webmistress for females) is a person responsible for designing, developing, marketing, or maintaining website(s). ...

JavaScript and DOM

Microsoft have extended Netscape's original JavaScript specification to create an implementation called JScript, which is the default scripting language interpreted in Internet Explorer. Like Netscape's JavaScript implementation, JScript supports the full specification of ECMAScript, the only standardised scripting language on the Web. ECMAScript is a scripting programming language, standardized by Ecma International in the ECMA-262 specification. ...

What is more different is the Document Object Model (DOM) bound with JScript. While all browsers have their own implementation of DOM Level 0 (vendor-specific), Internet Explorer implemented only some of the W3C recommended DOM Levels (1, 2 and 3). In addition, before DOM Level 2 was finalized, IE implemented some proprietary extensions to DOM which are similar, but not identical, to those in DOM Level 2. Most of these proprietary extensions are not accepted by the W3C. As the corresponding (finalized) DOM Level 2 objects and methods are not implemented in Internet Explorer due to the slowdown of development since version 6, problems arise when trying to write scripts that work on any browser. Web developers often need to write extra code so that the scripts will work on both Internet Explorer and on browsers that correctly implement the W3C standards. This duplication increases development effort, results in code bloat, and makes code maintenance harder. Document Object Model (DOM) is a description of how an HTML or XML document is represented in an object-oriented fashion. ...

Plugin API

It did for a time support Netscape's NPAPI. Plugins that functioned in the Netscape browser also functioned in Internet Explorer, but the support was dropped in version 5.5 SP2 in favor of Microsoft's own proprietary ActiveX technology, which unnecessarily increased the workload of vendors of helper applications like QuickTime. The NPAPI (or Netscape Plugin Application Programming Interface) is the cross-platform plugin architecture used by many web browsers. ... A plugin (or plug-in) is a computer program that can, or must, interact with another program to provide a certain, usually very specific, function. ... A helper application is an external viewer program launched to display content retrieved using a web browser. ... QuickTime is a multimedia technology developed by Apple Computer, capable of handling various formats of digital video, sound, text, animation, music, and immersive panoramic (and sphere panoramic) images. ...

Unicode

Main article: Unicode and HTML

Internet Explorer supports the Unicode standard for multilingual text, and is therefore theoretically capable of displaying any character which is present in an installed font. In practice, Internet Explorer does not automatically choose fonts for blocks of mixed Unicode text. Characters can end up displayed as blank squares or question marks. HTML 4. ... Technical note: Due to technical limitations, some web browsers may not display some special characters in this article. ... In typography, a typeface consists of a co-ordinated set of grapheme (i. ...

Web designers must guess which appropriate fonts may be present on users' computers, and manually specify them for every change of Unicode block. In contrast, most other browsers do this automatically.

Workarounds

To get around these problems, many web designers build websites compliant to W3C standards, and then implement workarounds or hacks to account for Internet Explorer's rendering inadequacies, or to hide advanced website features from IE. The CSS hacks are often very complicated, as they need to deal with different versions of IE on different platforms (mostly Windows and Mac). The hacks utilize not just Internet Explorer-specific features, but also some rendering-engine bugs that are well known. Some of the more common hacks: Web design is the design of web pages, websites and web applications. ... To meet Wikipedias quality standards, this article or section may require cleanup. ...

• Exploiting the "Star HTML selector" bug
• Exploiting the CSS parsing bugs
• Exploiting the underscore hack
• Using CSS2 selectors that IE doesn't recognize
• Using JScript/VBScript and the IE CSS behavior
• Using the IE CSS filters
• Using the IE conditional comments

One of the most popular IE hack collections is known as IE7 ^[15], written by Dean Edwards. It is an attempt to make Internet Explorer more compliant when it comes to web standards. In addition to the support of some CSS2 selectors, it also fixes some of the IE bugs. However, as many client-side scripts need to be loaded and run before displaying the page properly, there is a considerable amount of loading time needed for every single page.

Other criticisms

Increased Download Size

Over the versions, the download size of Internet Explorer has increased significantly. As of Internet Explorer 6 Service Pack 1 (including Outlook Express), the total download size for a typical installation was approximately 25 megabytes. The size varied between 11 (minimal install) and 75 MB (full install). This was much larger than that of some internet suites, for example (based on Windows installer) Opera 8.0 (3.6MB), and Mozilla Suite 1.7.8 (11MB). Microsoft Outlook Express is an e-mail and news client bundled with certain versions of Microsoft Windows starting with Windows 95 OSR-2. ... A megabyte is a unit of information or computer storage equal to approximately one million bytes. ...

Inaccurate Name

A minor, yet significant, criticism is the use of the word Internet in the software name. Strictly speaking, Internet Explorer is a web browser designed for the World Wide Web, not the whole Internet (which also includes e-mail, Usenet, telnet, IRC, etc). Because of the misleading use of "Internet" to represent the "World Wide Web", many users without much understanding of the Internet may think that Internet Explorer is the only way to access the Internet. This NeXTcube used by Berners-Lee at CERN became the first Web server. ... Wikipedia does not yet have an article with this exact name. ... Usenet is a distributed Internet discussion system that evolved from a general purpose UUCP network of the same name. ... ... Internet Relay Chat (IRC) is a form of instant communication over the Internet. ...

Unclear Error Messages

Internet Explorer also obfuscates error messages. "Page could not be displayed" is produced in many situations, and may indicate an HTTP 404 error, a DNS lookup failure, TCP error, SSL problem and probably many more. Although the actual problem is described in small type at the bottom, the prominence of "Page could not be displayed" means that it is typically the only text that will be reported to webmasters, leaving unsure what the problem was and unclear whether or not they need to take corrective action.

Lack of Development 2001-2005

The release of Windows XP Service Pack 2 in August 2004 was the only time Microsoft released any significant changes to Internet Explorer between the release of Windows XP and the future release of IE 7.0. Although Microsoft has released numerous updates to Internet Explorer during this time period, until Service Pack 2, those updates were primarily security updates. Windows XP is a major revision of the Microsoft Windows operating system created for use on desktop and business computer systems. ... 2004 (MMIV) was a leap year starting on Thursday of the Gregorian calendar. ... Microsoft Corporation (NASDAQ: MSFT, HKEx: 4338) is the worlds largest software company, with 2005 global annual sales of almost $40 billion USD and nearly 60,000 employees in 85 countries and regions. ... Windows XP is a major revision of the Microsoft Windows operating system created for use on desktop and business computer systems. ... The neutrality of this article is disputed. ...

Before Service Pack 2 was released, some users began to suspect that IE development (in terms of potential enhancements to the product) had been abandoned once Microsoft had 'won the browser wars'. IE Product Manager Brian Countryman added to the fears of these users when he announced in an interview in 2003 that "IE6 SP1 is the final standalone installation," indicating that its far-off (in 2003) Codename Longhorn operating system would be the sole platform for which any further enhancements would be released. A rough estimation of the usage share of major web browsers by layout engines over time. ... 2003 (MMIII) was a common year starting on Wednesday of the Gregorian calendar. ... Microsoft Internet Explorer, abbreviated IE or MSIE, is a proprietary graphical web browser made by Microsoft and currently available as part of Microsoft Windows. ... Windows Vista is the next version of Microsoft Windows operating system, superseding Windows XP. It was previously known by its codename Longhorn, after the Longhorn Saloon, a popular bar in Whistler, British Columbia (see the other Microsoft codenames). ...

Fortunately, Microsoft has since reversed that decision, and announced that version 7, like several other features originally intended for Windows Vista, would be available freely to all Windows XP users as well. Indeed, Microsoft also re-committed itself to supporting and enhancing IE 6 for Windows XP users, by releasing Service Pack 2, the much-needed update these users had been waiting for. It added several new features intended to enhance security, including a pop-up blocker. Dozens of pop-up ads cover a desktop. ...

Footnotes

1. ^  PNG Files Do Not Show Transparency in Internet Explorer, February 13, 2005.
2. ^  Transparent PNG Support, May 12, 2005.
3. ^  Cannot View Some PNG Images, May 12, 2005.
4. ^  PHP: imageinterlace, May 12, 2005.
5. ^  Forcing IE to Show Application/xhtml+xml pages, May 12, 2005.
6. ^  Sending XHTML as text/html Considered Harmful, February 13, 2005.
7. ^  /IE7/, May 12, 2005.
8. ^  Researchers warn of infectious Web sites, May 12, 2005.
9. ^  Handler's Diary May 11th 2005, May 12, 2005.
10. ^  An analysis of the Ilookup Trojan, May 12, 2005.
11. ^  Safe Personal Computing, May 12, 2005.
12. ^  Securing Microsoft Windows (for Home and Small Business Users), May 12, 2005.
13. ^  How to Protect Yourself From Vandals, Viruses If You Use Windows, May 12, 2005.
14. ^  Internet Explorer Is Too Dangerous to Keep Using, May 12, 2005.

February 13 is the 44th day of the year in the Gregorian calendar. ... 2005 (MMV) was a common year starting on Saturday of the Gregorian calendar. ... May 12 is the 132nd day of the year in the Gregorian Calendar (133rd in leap years). ... 2005 (MMV) was a common year starting on Saturday of the Gregorian calendar. ... May 12 is the 132nd day of the year in the Gregorian Calendar (133rd in leap years). ... 2005 (MMV) was a common year starting on Saturday of the Gregorian calendar. ... May 12 is the 132nd day of the year in the Gregorian Calendar (133rd in leap years). ... 2005 (MMV) was a common year starting on Saturday of the Gregorian calendar. ... May 12 is the 132nd day of the year in the Gregorian Calendar (133rd in leap years). ... 2005 (MMV) was a common year starting on Saturday of the Gregorian calendar. ... February 13 is the 44th day of the year in the Gregorian calendar. ... 2005 (MMV) was a common year starting on Saturday of the Gregorian calendar. ... May 12 is the 132nd day of the year in the Gregorian Calendar (133rd in leap years). ... 2005 (MMV) was a common year starting on Saturday of the Gregorian calendar. ... May 12 is the 132nd day of the year in the Gregorian Calendar (133rd in leap years). ... 2005 (MMV) was a common year starting on Saturday of the Gregorian calendar. ... May 12 is the 132nd day of the year in the Gregorian Calendar (133rd in leap years). ... 2005 (MMV) was a common year starting on Saturday of the Gregorian calendar. ... May 12 is the 132nd day of the year in the Gregorian Calendar (133rd in leap years). ... 2005 (MMV) was a common year starting on Saturday of the Gregorian calendar. ... May 12 is the 132nd day of the year in the Gregorian Calendar (133rd in leap years). ... 2005 (MMV) was a common year starting on Saturday of the Gregorian calendar. ... May 12 is the 132nd day of the year in the Gregorian Calendar (133rd in leap years). ... 2005 (MMV) was a common year starting on Saturday of the Gregorian calendar. ... May 12 is the 132nd day of the year in the Gregorian Calendar (133rd in leap years). ... 2005 (MMV) was a common year starting on Saturday of the Gregorian calendar. ... May 12 is the 132nd day of the year in the Gregorian Calendar (133rd in leap years). ... 2005 (MMV) was a common year starting on Saturday of the Gregorian calendar. ...

See also

• Internet Explorer
• Common criticisms of Microsoft

Microsoft Internet Explorer, abbreviated IE or MSIE, is a proprietary graphical web browser made by Microsoft and currently available as part of Microsoft Windows. ... This article is being considered for deletion in accordance with Wikipedias deletion policy. ...

External links

• Secunia - Vulnerability Report - Microsoft Internet Explorer 6.x
• Explorer Exposed!
• Windows Explorer vs. the Standards
• The Door Is Ajar — An "anti-IE" article by a Sun Microsystems technology director Tim Bray.
• Why You Should Dump Internet Explorer — An "anti-IE" article by a MCSE Daniel Miessler.
• StopIE — An "anti-IE" campaign by a web developer Stephen O'Brien
• Browse Happy — An "anti-IE" campaign by the Web Standards Project
• Drip — A utility to detect and measure IE's memory leaks.
• IE Leak Patterns — Microsoft's analysis of IE's memory leak problem.
• Internet Explorer Exploits
• Rendering problems in Internet Explorer
• How the web was almost won — Just how close did we come to a Net ruled by Microsoft? The "server wars" show a grim counterpart to the browser wars