Full Disclosure mailing list archives
Re: safari dos
From: Christian Horchert <chorchert () veedev de>
Date: Sat, 22 Nov 2003 17:56:47 +0100
Am 22.11.2003 um 01:58 schrieb kang () insecure ws:Original is here: http://www.insecure.ws/article.php?story=20031122012748282Safari will never exit a loop in javascript. Since javascript isn't executed in a thread, this cause a DoS (Safari crashes). Firebird has been tested and is not vulnerable. I don't know about other browers on MacOSX, but they are probably not vulnerable. (OmniWeb?)BBEdit ate cpu while previewing.Mhhh... aren't there quite a couple of programmes utelizing the foundation :-\
Only programms using KJS. btw: Konquoror (3.1.93) gives the following: "A script on this page is causing KHTML to freeze. If it continues to run, other applications may become less responsive" At least it catches the error. Christian _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- safari dos kang () insecure ws (Nov 21)
- Re: safari dos Christian Horchert (Nov 21)
- Re: safari dos kang () insecure ws (Nov 22)
- Re: safari dos Christian Horchert (Nov 22)
- Re: safari dos Christian Horchert (Nov 22)
- Re: safari dos kang () insecure ws (Nov 22)
- Re: safari dos Christian Horchert (Nov 22)
- Re: safari dos kang () insecure ws (Nov 22)
- Re: safari dos Grant Husbands (Nov 23)
- <Possible follow-ups>
- RE: safari dos Grant Husbands (Nov 23)
- Re: safari dos Christian Horchert (Nov 21)