lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <DBF1332F-1D0C-11D8-828A-000393754328@veedev.de>
From: chorchert at veedev.de (Christian Horchert)
Subject: safari dos

> Am 22.11.2003 um 01:58 schrieb kang@...ecure.ws:
>> Original is here: 
>> http://www.insecure.ws/article.php?story=20031122012748282
>
>> Safari will never exit a loop in javascript. Since javascript isn't 
>> executed in a thread, this cause a DoS (Safari crashes).
>> Firebird has been tested and is not vulnerable. I don't know about 
>> other browers on MacOSX, but they are probably not vulnerable. 
>> (OmniWeb?)
>
> BBEdit ate cpu while previewing.
> Mhhh... aren't there quite a couple of programmes utelizing the 
> foundation :-\

Only programms using KJS.

btw: Konquoror (3.1.93) gives the following:
"A script on this page is causing KHTML to
freeze. If it continues to run, other applications
may become less responsive"

At least it catches the error.


   Christian


Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ