Home page logo

fulldisclosure logo Full Disclosure mailing list archives

Re: this is fun?
From: "Jordan Klein" <haplo () haplo net>
Date: Sun, 20 Feb 2005 10:12:39 -0600

I wouldn't call that fun. It took my system to 100% cpu usage, spawned a ton of windows, and eventually caused firefox to crash. I guess that crash was firefox's built-in protection mechanism against this type of DoS. :-)

I haven't tried this with popup blocking enabled, since this is my work machine, and I have to allow popups so our internal sites work. (Damn, lazy web developers...)

Jordan Klein                 ~  Beware of dragons
haplo () haplo net              ~  for you are crunchy
UNIX System Administrator    ~  and go well with ketchup
----- Original Message ----- From: "Christian" <evilninja () gmx net>
To: <full-disclosure () lists netsys com>
Cc: "Brandy Simon" <brandysimon () gmail com>
Sent: Sunday, February 20, 2005 7:51 AM
Subject: Re: [Full-disclosure] this is fun?

Hash: SHA1

Brandy Simon wrote:

hm, what exactly is it?

$ wget http://picserv.on.zoy.org/IM39571.jpg
- --14:45:06--  http://picserv.on.zoy.org/IM39571.jpg
          => `IM39571.jpg'
Resolving picserv.on.zoy.org...
Connecting to picserv.on.zoy.org[]:80... connected.
HTTP request sent, awaiting response... 404 Not Found
14:45:06 ERROR 404: Not Found.

but my mozilla/firefox browsers will display some hamsters, someone is
saying something and cpu-usage is at 100%...

- --
BOFH excuse #200:

The monitor needs another box of pixels.
Version: GnuPG v1.4.0 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]