Closed Bug 1586906 Opened 5 years ago Closed 5 years ago

A payload or script that can dos and crash a system

Categories

(Firefox :: File Handling, defect)

Product:
Firefox
Component:
File Handling
Version:
69 Branch
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED DUPLICATE of bug 1496380

People

(Reporter: kirankumarsubuddi, Unassigned)

Details

Attachments

(1 file)

I have attached a video POC by manually entering the script. If required I can provide you the pocs in which the script can be executed through messages, mails, etc
5.29 MB, video/mp4
Details

User Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36

Steps to reproduce:

Open Firefox browser and type "mailto:a" in the search bar and press enter. You can replace 'a' with Mail id or any URL. For eg :- mailto:security@mozilla.org or mailto:bugzilla.mozilla.org

Actual results:

Unlimited tabs start opening leading to system crash. This payload or script can be sent through messages, mails, etc to execute the attack remotely. Firefox reactivates/starts even if it is closed.

Expected results:

It should open a normal search result.

In Firefox, go to the options, search for "applications", and next to "mailto" in the list, select any option that isn't Firefox.

Group: firefox-core-security
Status: UNCONFIRMED → RESOLVED
Closed: 5 years ago
Resolution: --- → DUPLICATE
Component: Untriaged → File Handling
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: