Closed Bug 479813 Opened 15 years ago Closed 15 years ago

BODY onload="" lets FF 3.0.6 and below crash (Denial of Service)

Categories

(Firefox :: Security, defect)

x86
Linux
defect
Not set
critical

Tracking

()

RESOLVED DUPLICATE of bug 456727

People

(Reporter: mkohler, Unassigned)

References

()

Details

User-Agent:       Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.2a1pre) Gecko/20090223 Minefield/3.2a1pre
Build Identifier: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.0.6) Gecko/2009011912 Firefox/3.0.6

The script linked under "URL" lets crash FF 3.0.6 and below. I didn't know if this bug already was filed in, but security bugs aren't visible for "normal" users like me.

BTW: today's trunk nightly doesn't crash when running this script.

Reproducible: Always
Group: core-security
Status: UNCONFIRMED → RESOLVED
Closed: 15 years ago
Resolution: --- → DUPLICATE
You need to log in before you can comment on or make changes to this bug.