Open
Bug 1332563
Opened 8 years ago
Updated 2 years ago
Denial Of Service via try and catch and encodeURI
Categories
(Core :: JavaScript Engine, defect, P3)
Tracking
()
UNCONFIRMED
People
(Reporter: mishra.dhiraj95, Unassigned)
References
(Blocks 1 open bug)
Details
(5 keywords, Whiteboard: [sg:dos] infinite loop)
User Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:50.0) Gecko/20100101 Firefox/50.0 Build ID: 20161208153507 Steps to reproduce: I am using : Name Firefox Version 50.1.0 Build ID 20161208153507 User Agent Mozilla/5.0 (Windows NT 6.1; WOW64; rv:50.0) Gecko/20100101 Firefox/50.0 OS Windows_NT 6.1 Steps to Reproduce : 1. Visit http://hackies.in/force.html 2. Crash ID generates Code : <html><head><title></title> <script type="text/javascript"> while (true) try { var object = { }; function g(f0) { var f0 = (object instanceof encodeURI)('foo'); } g(75); } catch (g) { } </script> </head></html> Crash ID : https://crash-stats.mozilla.com/report/index/a265cc1e-e710-465a-8963-de4f72170120 Actual results: Its impossible to further click anywhere in the application window. Works on all platform and various version as well.
Comment 1•8 years ago
|
||
This is a hang (and eventual kill) due to the infinite loop. Why didn't the "slow script" dialog give you a chance to kill it?
Group: firefox-core-security
Component: Untriaged → JavaScript Engine
Product: Firefox → Core
Whiteboard: [sg:dos] infinite loop
Works for me, after a few seconds the "slow script" dialog pops up and lets me kill the script. Firefox 51.0.1 (64-bit) UA: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:51.0) Gecko/20100101 Firefox/51.0 Build ID: 20170201174907 OS: Ubuntu 16.10
Reporter | ||
Comment 3•7 years ago
|
||
WFM in Ubuntu gives popup slow script and kills the script but this happens sometimes probably FF become freeze to give stop script pop up.
Updated•7 years ago
|
Keywords: triage-deferred
Priority: -- → P3
Updated•3 years ago
|
Blocks: sm-defects-crashes
Updated•2 years ago
|
Severity: normal → S3
You need to log in
before you can comment on or make changes to this bug.
Description
•