Re: Chrome(0.2.149.27) title(not the tag) Denial of Service(Freeze) exploit
- To: rotem@xxxxxxxxxx
- Subject: Re: Chrome(0.2.149.27) title(not the tag) Denial of Service(Freeze) exploit
- From: "Wellington Wagner F. Sarmento" <wwagner33@xxxxxxxxx>
- Date: Mon, 8 Sep 2008 18:50:30 -0300
- Cc: bugtraq@xxxxxxxxxxxxxxxxx
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to :subject:cc:in-reply-to:mime-version:content-type :content-transfer-encoding:content-disposition:references; bh=j9XAobEK+NlsRQT6Yp/2AaYMuJXlZEDr7PuA3dxQoHI=; b=YEzJImGAhTQOSijCaur1wjDmhu4wfm93Ch2eRqs0ozcCBtz6AcPJt0dKkqh0MaG1ia /ZhjjgVG1XpledmRNNNyuCWzHdxkX2+4vWIl5BTxMyuGvpzWvecYDR/QeWKo61zKmPnM snVRgpzw4D8byS5wok9kqviaUxjcu4iW4oPKM=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:cc:in-reply-to:mime-version :content-type:content-transfer-encoding:content-disposition :references; b=yHnJMuNO2Q5kenDuwpSHbtLEHauIXQeQ5UV4zQyM6T2upXnT/6RAytHjo3Gpej0OHk CY0ZLgCaC25OdySDGMobSkvJIwRrDWKRGiZ8n3b9eGmOr5uS6//UKrLjJRNVlKiGZ6av wnCEg99+hoIPNfwvK+g24EH79VLzVGiXFGCnI=
- In-reply-to: <48C5397F.6040507@xxxxxxxxxx>
- List-help: <mailto:bugtraq-help@securityfocus.com>
- List-id: <bugtraq.list-id.securityfocus.com>
- List-post: <mailto:bugtraq@securityfocus.com>
- List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
- List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
- Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
- References: <48C5397F.6040507@xxxxxxxxxx>
I could not duplicate this with either Chrome v0.2.149.29. I think
this problem was now solved.
--
_Wellington Wagner F. Sarmento
"Where is the wisdom we have lost in knowledge?
Where is the knowledge we have lost in information?"
T.S. Eliot
2008/9/8 Rotem Kerner <rotem@xxxxxxxxxx>:
> a vulnerability was found which allow a remote attacker to freeze the users
> browser
> by convincing him to visit a malicious web page
>
> Chrome(0.2.149.27) Denial of Service(Freeze) exploit poc:
> http://www.blackhat.org.il/exploits/chrome-freeze-exploit.html
>
> Exodus.
>
>
>
>
--
_Wellington Wagner F. Sarmento
"Where is the wisdom we have lost in knowledge?
Where is the knowledge we have lost in information?"
T.S. Eliot