Open Bug 861671 Opened 12 years ago Updated 2 years ago

IFRAME tag makes browser unresponsive

Categories

(Core :: DOM: Core & HTML, defect, P5)

Product:
Core
Component:
DOM: Core & HTML
Platform:
x86
Windows 7
Type:
defect

Tracking

()

People

(Reporter: shaheemirza, Unassigned)

References

(Blocks 1 open bug)

Details

(Keywords: csectype-dos)

Attachments

(3 files)

iframe-makes-unresponsive.zip
(deleted), application/java-archive
Details
(PoC)1.html
(deleted), text/html
Details
(PoC)2.html
(deleted), text/html
Details
Attached file iframe-makes-unresponsive.zip (deleted) —
User Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31 Steps to reproduce: I have attached a PoC. Thank You.
If you think, i have submitted this issue in a wrong category, please, change the category.
This is a DoS that should likely be sec-low marking sec-bounty -
Flags: sec-bounty-
:D
Component: Untriaged → DOM
Product: Firefox → Core
Attachment #737294 - Attachment mime type: application/octet-stream → application/java-archive
Blocks: eviltraps
Group: core-security
Status: UNCONFIRMED → NEW
Ever confirmed: true
Keywords: csec-dos
So the basic testcase is: <iframe onload="window.location = ''"></iframe> right? Or even simpler: <iframe onload="window.location.reload()"></iframe> ?
Yeah, looks like that.
Priority: -- → P5
Component: DOM → DOM: Core & HTML
Severity: normal → S3
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: