Mozilla Firefox 1.0.6/1.0.7 - iFrame Handling Denial of Service

EDB-ID:

26325


Author:

Tom Ferris

Type:

dos


Platform:

Multiple

Date:

2005-10-05


source: https://www.securityfocus.com/bid/15015/info

Mozilla Firefox is prone to a remote denial of service vulnerability.

The vulnerability presents itself when an affected browser handles a specially crafted IFRAME.

A successful attack may result in crashing the application, or consuming excessive CPU and memory resources of computers running the affected application.

It should be noted that this issue was reported to affect Firefox 1.0.6 and 1.0.7 running on Linux. Other versions running on different platforms may be vulnerable as well.

IFRAME WIDTH=33333333