![]() |
[Vulnerability Warning] Windows crashes because a "too big" picture in browser
A simple HTLM page is capable of crashing a windows pc.
When an image-tag in an HTML page is loaded and the size of the image is blown up with the WITH and HEIGHT attributes until a certain extend, the loaded image eats up so much recourses that the videodriver and the computer crashes (bluescreen, restart or freezes). so, watch out for bad jokes with this vulnarability! my source is a German site: heise online and The 'Full-disclosure' mailinglist Next is an example of the code that 'causes the crashes. It is extremely simple: !!!! Warning: Use this code at your own risk. Save anything you are working on before trying out. !!!! copy and paste in a HTML page. point the "YourImage.jpg" to a real image. PHP Code:
|
You should be able to send people emails with these settings - those who's browsers are html enabled might be in trouble. Have you tried this out?
|
Quote:
But I have a bad feeling that I'm going to encounter this a lot: think of guestbooks, msn, fora, bbs,... all could be HMTL-enabled and all could be easy accessed by 13 year old no-brain would-be script-kiddies. EDIT: watch out @ work! I just successfully crashed a win2k server while opening a page with this code through remote desktop. Luckily for me this was my own test-server and it is located in the room next to me, but I can't think of what would happen in a live environment |
Does it work with Firefox, Safari, or any other browsers?
|
I just ran the german site through a translator - http://www.google.com/translate?u=ht...&hl=en&ie=UTF8
looks like Firefox etc might have problems with this as well. |
Well I just tested it - If you're quick, you could probably stop Firefox via your Task Manager before it crashes your machine (it really slowed my PC down but I stopped it before it got really nasty)
However, IE caused a reboot within 20 seconds of me opening a page I'd made. |
Good thing I use Yahoo mail and have my HTML disabled.
Does it affect netscape? |
There was a story about this on digg a couple days ago. Based on the thread there, linux and macs are unaffected. And you can be unaffected as well if you have a good processor and plenty of memory. I crashed pretty hard, though.
|
All times are GMT -8. The time now is 06:29 AM. |
Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2025, vBulletin Solutions, Inc.
Search Engine Optimization by vBSEO 3.6.0 PL2
© 2002-2012 Tilted Forum Project