Bug 141331 - mozilla javascript DoS
Summary: mozilla javascript DoS
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Red Hat Enterprise Linux 3
Classification: Red Hat
Component: mozilla
Version: 3.0
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Christopher Aillon
QA Contact: Ben Levenson
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2004-11-30 15:16 UTC by Josh Bressers
Modified: 2007-11-30 22:07 UTC (History)
0 users

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2006-10-30 20:54:27 UTC
Target Upstream Version:
Embargoed:


Attachments (Terms of Use)

Description Josh Bressers 2004-11-30 15:16:51 UTC
This message was reported to full-disclosure

http://lists.netsys.com/pipermail/full-disclosure/2004-November/029434.html

It is possible to crash mozilla with a few lines of HTML.

This issue also affects galeon for RHEL2.1 as well as mozilla for RHEL2.1

Comment 1 Josh Bressers 2004-11-30 15:17:51 UTC
This issue is being watched upstream by these bugs

https://bugzilla.mozilla.org/show_bug.cgi?id=271716
https://bugzilla.mozilla.org/show_bug.cgi?id=271718


Comment 2 Mark J. Cox 2004-12-07 10:36:44 UTC
The Mozilla Software Foundation do not in general treat simple unexploitable
crashes of a browser as a security issues.  Removing security severity.

Comment 3 Christopher Aillon 2006-10-30 20:54:27 UTC
Fixed by bumping to seamonkey.


Note You need to log in before you can comment on or make changes to this bug.