Created attachment 657561 [details] bag iframe.htm User Agent: Mozilla/5.0 (Windows NT 5.1; rv:14.0) Gecko/20100101 Firefox/14.0.1 Build ID: 20120713134347 Steps to reproduce: Procedure: 1. A_test_log.txt create a file in which a lot of text (AAAAAAAAAAAAAAAAAAAAAAAA. ....................................) 2. Add to page a lot iframe (<iframe src="A_test_log.txt"> </ iframe>) 3. Run bag iframe.htm Actual results: browser crash Expected results: ordinary browser operation P.S. Do not attached A_test_log.txt due to the high weight of the file.
You ran Firefox out of memory and it crashed in self-defense. Not nice, but not exploitable except as an annoyance.
Status: UNCONFIRMED → NEW
Ever confirmed: true
Keywords: crash, csec-oom
Summary: Buffer overflow in the iframe → Out of memory by including lots of huge iframes
Hi Boev, I have tested the mentioned issues on latest Firefox release (43.0.4) and latest Nightly (46.0a1) and could not reproduce it. Followed your provided steps, created a file “.txt” with a lot of text, and a page ".htm" with 1500 iframes and run it but the browser didn't crash. Indeed It took some time until the page was loaded. Also I have ceated another ".txt" file with your attached iframes after. When I opened it, the browser froze for a while but it recovered after. Firefox: 43.0.4, Build ID:20160105164030, User Agent:Mozilla/5.0 (Windows NT 5.2; WOW64; rv:43.0) Gecko/20100101 Firefox/43.0 Firefox: 46.0a1, Build ID:20160107030235, User Agent: Mozilla/5.0 (Windows NT 5.2; WOW64; rv:46.0) Gecko/20100101 Firefox/46.0 Can you please test this on the latest Firefox release (43.0.4) or latest Nightly (46.0a1, https://nightly.mozilla.org/) and tell me if this still reproduces for you ? When doing this please use a new fresh Firefox profile (https://support.mozilla.org/en-US/kb/troubleshoot-and-diagnose-firefox-problems). Thanks, Cosmin.
Considering the fact that the reporter did not provided more information on my request, I will mark this issue as resolved - worksforme. If you can still reproduce this, feel free to reopen it and provide the requested information. Thanks, Cosmin.
Status: NEW → RESOLVED
Last Resolved: 3 years ago
Resolution: --- → WORKSFORME
You need to log in before you can comment on or make changes to this bug.