Mozilla Firefox Iframe Size Denial of Service Weakness

Discussion in 'other security issues & news' started by ronjor, Oct 6, 2005.

Thread Status:
Not open for further replies.
  1. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,762
    Location:
    Texas
    Release Date: 2005-10-06

    Not critical
    Impact: DoS
    Where: From remote
    Solution Status: Unpatched

    Software: Mozilla Firefox 1.x

    Secunia
     
  2. nicM

    nicM nico-nico

    Joined:
    Jul 15, 2004
    Posts:
    631
    Location:
    France
    thanks, Ronjor.

    "Solution:
    Do not browse untrusted web sites" :D they usually propose a better fix, isn't it ?? lol
     
  3. Kye-U

    Kye-U Security Expert

    Joined:
    Jun 11, 2004
    Posts:
    481
    My Proxomitron filter fixes this. (Already existing in my Browser Security Pack)

    Code:
    [Patterns]
    Name = "Fix Tag Sizes [Kye-U]"
    Active = TRUE
    URL = "$TYPE(htm)"
    Limit = 128
    Match = "( |)((row|cols|)span|rows|cols|height|width)=$AV(([0-9]+{5,*}))"
    Replace = "$ALERT(Fixed Invalid Tag Size(s) on:\n\n\u)"
     
Loading...
Thread Status:
Not open for further replies.