Issue 2877: Advisory - Google Chrome Window Object Suppressing Denial of
Service
http://code.google.com/p/chromium/issues/detail?id=2877
Comment #9 by Adi.ZeroK:
Here are the proof of concept.
1. Parent window is killed directly there by leading to Denial of Service.
2. You should test it with with IE and Mozilla. Their behavior are summed
as:
Mozilla - Script only closes the window that is open by window.
IE - Parent window check is there.
3. Google Chrome straight forward kills.
I have given the issue locally previously to look into. But chromium team
wants to close
it as they not judged it properly. Have a look on the issue:
Proof of concepts:
[1] http://www.secniche.org/poc.html
[2] http://www.secniche.org/gws/index.html
[3] http://www.secniche.org/gws/poc.html
You open first link the google chrome kills the parent window directly. In
second
issue you click the link to open in new window it crashes. The third is
somewhat same.
I will wait for your response asap.
--
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"Chromium-bugs" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to [EMAIL PROTECTED]
For more options, visit this group at
http://groups.google.com/group/chromium-bugs?hl=en
-~----------~----~----~----~------~----~------~--~---
