Tag: JIT

After we reported that Mozilla is working on a new, faster scripting engine -- JägerMonkey -- it has now come to light that Apple's WebKit project and its JavaScript native code generator JSCore will be the 'secret sauce' that speeds things up. Firefox already has strong code optimization in its current JavaScript engine (TraceMonkey), but in terms of actual code generation Adobe's nanojit ...

In just over two weeks, Firefox 3.5 has been downloaded almost 28 million times. And yes, 3.5 boasts greatly improved JavaScript performance. Unfortunately, the JIT compiler also sports a critical weakness in its current state. A web site containing the correct exploit code (which has been shared by Simon Berry at milw0rm.com) could allow an attacker to execute arbitrary code on vulnerable ...