Bugtraq mailing list archives

Re: Mozilla Firefox 3.6.12 Denial of Service Vulnerability

From: Michal Zalewski <lcamtuf () coredump cx>
Date: Wed, 24 Nov 2010 10:17:24 -0800

<body onload="location='';alert('DoS');">


Welcome to the world of browsers. You could just as easily do
"while(1) alert(1)". See:

http://code.google.com/p/browsersec/wiki/Part2#Defenses_against_disruptive_scripts

/mz

Current thread:

Mozilla Firefox 3.6.12 Denial of Service Vulnerability info (Nov 26)
- Re: Mozilla Firefox 3.6.12 Denial of Service Vulnerability Michal Zalewski (Nov 26)