Crash risks for Firefox and Internet Explorer
Exploits demonstrating how to crash Firefox and Internet Explorer are currently circulating. In Firefox, it is sufficient to call a specific 'chrome URL'. [ticker:uk_61652 Chrome-URLs] are pseudo URLs which, in Firefox, can be used to run specific components in the browser's GUI with full access to local resources. They can be used, for example, to configure Firefox - the settings are simply mappings of the chrome URLs to XUL modules (User Interface Language). Known XUL modules include three which (are known to) cause a crash as soon as they are called:
However, exploiting this for a DoS attack is far from easy, as it is not possible to call chrome URLs embedded in web pages. An attacker would have to persuade a victim to copy and paste the above URLs into the Firefox address bar. Firefox 2.0 for Windows and Linux is affected.
- Firefox 22.214.171.124 DoS crash, advisory on Full Disclosure
- Internet Explorer Crash, advisory on Full Disclosure