Mozilla Firefox 1.0.6/1.0.7 - iFrame Handling Denial of Service

Author: Tom Ferris
type: dos
platform: multiple
port: 
date_added: 2005-10-05  
date_updated: 2017-10-05  
verified: 1  
codes: CVE-2005-4720;OSVDB-19880  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 26325.txt  

source: https://www.securityfocus.com/bid/15015/info

Mozilla Firefox is prone to a remote denial of service vulnerability.

The vulnerability presents itself when an affected browser handles a specially crafted IFRAME.

A successful attack may result in crashing the application, or consuming excessive CPU and memory resources of computers running the affected application.

It should be noted that this issue was reported to affect Firefox 1.0.6 and 1.0.7 running on Linux. Other versions running on different platforms may be vulnerable as well.

IFRAME WIDTH=33333333