Mozilla Firefox Iframe Size Denial of Service Weakness

Discussion in 'other security issues & news' started by ronjor, Oct 6, 2005.

Thread Status:
Not open for further replies.
  1. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    163,867
    Location:
    Texas
    Release Date: 2005-10-06

    Not critical
    Impact: DoS
    Where: From remote
    Solution Status: Unpatched

    Software: Mozilla Firefox 1.x

    Secunia
     
    ronjor, Oct 6, 2005
    #1
  2. nicM

    nicM nico-nico

    Joined:
    Jul 15, 2004
    Posts:
    631
    Location:
    France
    thanks, Ronjor.

    "Solution:
    Do not browse untrusted web sites" :D they usually propose a better fix, isn't it ?? lol
     
    nicM, Oct 6, 2005
    #2
  3. Kye-U

    Kye-U Security Expert

    Joined:
    Jun 11, 2004
    Posts:
    481
    My Proxomitron filter fixes this. (Already existing in my Browser Security Pack)

    Code:
    [Patterns]
Name = "Fix Tag Sizes [Kye-U]"
Active = TRUE
URL = "$TYPE(htm)"
Limit = 128
Match = "( |)((row|cols|)span|rows|cols|height|width)=$AV(([0-9]+{5,*}))"
Replace = "$ALERT(Fixed Invalid Tag Size(s) on:\n\n\u)"
     
    Kye-U, Oct 6, 2005
    #3
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...