Mozilla Multiple MARQUEE Tag HTML Parsing DoS

2004-10-18T04:31:28
ID OSVDB:11136
Type osvdb
Reporter Michal Zalewski(lcamtuf@ghettot.org)
Modified 2004-10-18T04:31:28

Description

Vulnerability Description

Mozilla Web Browser contains a flaw that may allow a remote denial of service. The issue is triggered when a user access a malicious web page containing TEXTAREA, INPUT, FRAMESET, or IMG tags followed by a NULL character and extra characters, and will result in loss of availability for the service.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

Mozilla Web Browser contains a flaw that may allow a remote denial of service. The issue is triggered when a user access a malicious web page containing TEXTAREA, INPUT, FRAMESET, or IMG tags followed by a NULL character and extra characters, and will result in loss of availability for the service.

References:

Vendor URL: http://www.mozilla.org/ Security Tracker: 1011810 Related OSVDB ID: 11137 Related OSVDB ID: 11138 Related OSVDB ID: 11134 Related OSVDB ID: 11135 Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2004-10/0658.html Keyword: mangleme ISS X-Force ID: 17805 CVE-2004-1614 Bugtraq ID: 11440