A vulnerability exists in Apple Safari 2.0.3 (417.9.3) and perhaps in prior versions which shows up the SRCOD (Spinning Rainbow Cursor Of Death).
64b97db60958045d4f85727b0ccb2b460d2415343e0f67865cdd803727e5aa8e
Apple Safari 2.0.3 (417.9.3) JavaScript - Denial of Service
===========================================================
Release Date:
May 19th, 2006
Vendor:
Apple Computer Inc.
Tested with/under:
Apple Safari 2.0.3 (417.9.3) under Mac OS X 10.4.6 <= affected
Overview:
A vulnerabilitiy exists in Safari 2.0.3 (417.9.3) and perhaps in
prior versions witch shows up the SRCOD (Spinning Rainbow Cursor Of
Death)
Technical Details:
Create a new File with following code ...
<script>
for (;;);
</script>
... then save it as a .html file (example.html) now be shure that
you've enabled JavaScript in the preferences!
For an example klick at the link with Safari (WARNING: Will show up
the SRCOD [Spinning Rainbow Cursor Of Death])
https://www.yanux.ch/exploits/safari/safari_dos.html
Solution:
Disable JavaScript.
Vendor Status:
Apple has notified of this issues on 05/19/2006
Discovered by:
Yannick von Arx
yannick[dot]vonarx[at]yanux[dot]ch
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed