The Luxembourg security specialists G-SEC have published details of a vulnerability in the majority of browsers which will either crash the browser or consume so much memory that it makes the computer virtually unusable. The trick is simple. Using JavaScripts DOM (Document Object Model), create a selection menu on the web page; a select element. Then assign to that select elements length attribute a very high value, as a result there is a continuous allocation of memory. The length attribute specifies the number of menu items the select element should contain, and according to the specification (and common sense) should be read only, but in many cases, it is writeable.

Link to original article

There are no related posts to this one. Have some randomness:

• June 15, 2009 -- Linux Foundation Takes Training Online (0)
• January 3, 2010 -- Nexus One Could Torpedo Google Android Strategy (0)
• July 31, 2009 -- Canonical Tells Mac OS X, Windows Users: Switch to Ubuntu (0)
• September 24, 2009 -- Samsung launches Corby family of handsets (0)
• December 14, 2009 -- Mobile makers betting on Android (0)