Status

()

Core
ImageLib
--
minor
RESOLVED WORKSFORME
8 years ago
6 years ago

People

(Reporter: MaviATES, Unassigned)

Tracking

Firefox Tracking Flags

(Not tracked)

Details

(Whiteboard: [sg:dos])

Attachments

(2 attachments)

(Reporter)

Description

8 years ago
User-Agent:       Mozilla/5.0 (Windows; U; Windows NT 5.1; tr; rv:1.9.2.8) Gecko/20100722 Firefox/3.6.8
Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.1; tr; rv:1.9.2.8) Gecko/20100722 Firefox/3.6.8

I find a firefox exploit on internet. I didnt try it.

Publisher Note:
Накопал еще одну гавнобагу в Firefox, грузит просессор на 100%, жрет всю память и ничего хорошего не делает. Проверял на 2.0.0.1

Download Link: http://usar.pp.ru/blog/wp-content/uploads/2007/12/firefoxdos0x01.rar

Reproducible: Didn't try
(Reporter)

Comment 1

8 years ago
Created attachment 460606 [details]
Exploit File
Group: core-security
Whiteboard: [sg:dos]
Created attachment 460647 [details]
testcase

I attached the image directly to the bug. I don't hang with the image, although it's a little slow. It doesn't show up at all on trunk, I guess that is because of bug 514033.

Updated

8 years ago
Depends on: 514033
Component: General → ImageLib
Product: Firefox → Core
QA Contact: general → imagelib

Comment 3

7 years ago
According to translate.google.com the message says: "Dug another bug in Firefox, loading processor 100%, eats all the memory and does no good. Tested on 2.0.0.1"

Tested on Firefox 5, Win XP. The image does not even display, I get "The image “firefox.dos.0x01.jpg” cannot be displayed because it contains errors."
But I do not get high CPU or memory use.

Windows image and fax viewer shows it as grey tall bar, it claims it is 2052x65500px. However XnView just shows a thumbnail but can't show full image because of an error. Is the image really that large or is it intentionally corrupted/invalid?

Comment 4

6 years ago
Testing on Firefox 10, I just see the broken image icon on Win 7 and Ubuntu 11.04. Together with Comments 2 and 3, I think we have enough to conclude this is no longer a problem. Please reopen if this isn't the case.
Status: UNCONFIRMED → RESOLVED
Last Resolved: 6 years ago
Resolution: --- → WORKSFORME
You need to log in before you can comment on or make changes to this bug.