Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Full-Disclosure] IE sp2 and Mozilla Firefox DoS.

from [Sebastian Dietz] Network Security [Permanent Link]
Subject: Re: [Full-Disclosure] IE sp2 and Mozilla Firefox DoS.
Date: Tue, 28 Dec 2004 00:52:16 +0100 
I observed something different. I tried the following:

Generated a file like:

<html>
<head><title> (4MB from /dev/urandom)
</html> (or </title></html>)

on a gentoo linux kernel 2.6.9 FireFox 1.0 512MB Ram and FireFox started to use
up to 70% of the memory and about 4 CPU Minutes (1.4GHz Thunderbird) and then
displayed the page. (some in the title, the rest in the main window)

After switching to a new page, FireFox did not free the big chunk of memory,
but responded like normal. Actually I am writing this mail with this instance.
When closing FireFox the mem is freed of course. So I think this is not realy a
DoS against FireFox 1.0 on Linux, but a serious proplem for multi user
Systems.

ciao

Execute

On 27.12.2004 at 21:20:13, bipin gautam <visitbipin@yahoo.com> wrote:


There is an issue with these browser rendering html's
with long titles. 
Only Tested on: 
-------------- 
Internet Explorer(SP2): 6.0.2900.2180 
Mozilla firefox: 1.0 

Not affected:
------------- 
Mozilla Browser 

Have a look at, 
___________________ 
<html> 
<head> <title>  ....(put)3.5 MB OF data....... 

</html> 
___________________
 

For IE beyond 1 Mb will just do fine. On execution,
Mozilla Firefox starts filling up all the available
system memory with 100% CPU use. 

Internet explorer renders 100% CPU use, but no system
instability. (O; 
I've tested it on Windows XP SP2. 

Both Firefox & IE supports decompression method 'gzip'
ie. an extended request header named
HTTP_ACCEPT_ENCODING like 
HTTP_ACCEPT_ENCODING=gzip,deflate 

By this way, the file can be kept around few kilobytes
in the server and delivered easily. I wonder, why
such... simple issue went un-noticed to everyone for
years... 


              
__________________________________ 
Do you Yahoo!? 
Send holiday email and support a worthy cause. Do good. 
http://celebrity.mail.yahoo.com
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Full-Disclosure] Isecom, osstm related: CRG was busted yesterday, your_momma
Next by Date:  [Full-Disclosure] New changes, RawData
Previous by Thread:  [Full-Disclosure] IE sp2 and Mozilla Firefox DoS., bipin gautam
Next by Thread:  Re: [Full-Disclosure] IE sp2 and Mozilla Firefox DoS., morning_wood
Indexes:  [Date] [Thread] [Top] [All Lists]