Access denied to jQuery script on IE

I have an iframe using the jQuery 1.4.2 script. The same iframe is injected into both http and https sites. The jQuery script is included in the main HTML file as a relative path (e.g., /scripts/jquery-1.4.2.min.js).

When an AJAX call is made, Internet Explorer denies access. The AJAX is calling on another subdomain, but it's using the right protocol. All other browsers work but Internet Explorer gives the following error:

SCRIPT5: Access is denied. jquery-1.4.2.min.js, line 127 character 344

I heard this error is from cross-domain AJAX calls. But why is IE the only one giving me crap? Is there an IE solution?

Also, this is my AJAX:

     url: thisURL,
     dataType: "json",
     data: {cmd : 'getMessage', uurl: urlVar, t: Math.random()},
     success: function(ret){


IE requires you to use XDomainRequest instead of XHR for cross site, you can try something like...

if ($.browser.msie && window.XDomainRequest) {
            // Use Microsoft XDR
            var xdr = new XDomainRequest();
  "get", url);
            xdr.onload = function() {
                // XDomainRequest doesn't provide responseXml, so if you need it:
                var dom = new ActiveXObject("Microsoft.XMLDOM");
                dom.async = false;
        } else {
            // your ajax request here
                   url: thisURL,
                   dataType: "json",
                   data: {cmd : 'getMessage', uurl: urlVar, t: Math.random()},
                   success: function(ret){



not sure whether it fits your scenario

xdr = new XDomainRequest(); 
}"GET", thisUrl); //thisURl ->your cross domain request URL 
//pass your data here

you can find some more guidance here

This solved the issue gracefully for me:

Just install/compile after jQuery and before your script and use the $.ajax method as you normally would, the rest is handled behind the automatically.

Have you try to use the lastest of JQuery(> jquery-1.8.0)? Since the version 1.8.0, they solved some IE9's bugs. Perhaps this one too.

I had a similar problem and the solution for me was to use jsonp instead of json. That way I didn't have to break out a customer version for IE.

You can only do this if the json server host supports the callback request variable or you have access to the server and can add support. Here is a page that helped me understand the process. Its .net mvc focused, but it gives a good over view of the diffrence between json and jsonp.

Check the domain you are accessing, following response headers should be there

"Access-Control-Allow-Methods" : "POST, GET, OPTIONS"
"Access-Control-Allow-Origin"  : "" or "*"

the other domain should allow your script request. One more header to be added to your response is P3P header.


it should help you out.

I was facing similar issue. I was using file upload control but it was hidden and I had another element trying to control the file upload and events to upload file in ajax way

try using the file upload control directly. this solved issue in my application.

I get this bug (and thus google here) but the reason was very different. So if you don't have cross site and still get this access denied error: double check the value sent let's say that you affect one of you variable with the bad following expression:

urlVar = $("theID").val // without () this was the error!

[...]ajax call:

data: {cmd : 'getMessage', uurl: urlVar, t: Math.random()},

Google/FF have no problem with this (check what is receive server side...) BUT IE refuse to send this!

I changed my JQuery from version 1.10.1 to 1.10.2 and it seems to have solved this problem for me.

It seems that MS is finding its own way of doing things, rather than adopting industry recommendations. I found the solution here:

Simply add 'callback=?' on your ajax URL request like here:

Need Your Help

How can I check the version of a Liferay instance?


I have several instances of Liferay Portal (bundled with Apache Tomcat 5.5.x/6.x) and I need to know how to check the version of those Liferay instances.