http://www.exploit-db.com/exploits/11432
http://seclists.org/fulldisclosure/2010/Feb/280
=======================================================================
Mozilla Firefox 3.6 (Multitudinous looping )Denial of Service Exploit
=======================================================================
by
Asheesh Kumar Mani Tripathi
# code by Asheesh kumar Mani Tripathi
# email informationhacker08@gmail.com
# company aksitservices
# Credit by Asheesh Anaconda
#Download www.mozilla.com/firefox
#Background
Mozilla Firefox is a popular internet browser. .....:)
#Vulnerability
This bug is a typical result of multitudinous loop.
The flaw exists when the attacker put window.printer() funtion
in multitudinous loop.User interaction is required to
exploit this vulnerability in that the target must visit a malicious
web page.
#Impact
Browser doesn't respond any longer to any user input, all tabs are no
longer accessible, your work if any might be lost.
#Proof of concept
copy the code in text file and save as "asheesh.html" open in Mozilla Firefox
========================================================================================================================
asheesh.html
========================================================================================================================
========================================================================================================================
#If you have any questions, comments, or concerns, feel free to contact me.
No comments:
Post a Comment