Fwd: Re: Buffer Overflow with all versions of Internet Explorer and Javacript.
George Staikos
staikos at kde.org
Tue Jun 4 15:26:43 BST 2002
On Tuesday 04 June 2002 05:35, Harri Porten wrote:
> On Mon, 3 Jun 2002, George Staikos wrote:
> > > In KDE's konqueror Latest Version it Seg Faults the browser instantly
> >
> > a bit OT, but anyway, I also checked this and
> > Konqeror 3.0.0 hogs the CPU, but there was no segfault, the same effect
> > (100% CPU utilization) is done by simply this:
> > <html><head></head>
> > <script language="JAVASCRIPT">
> > function foo() {
> > foo();
> > }
> > </script>
>
> I guess it will crash eventually. Not because of a buffer overflow but a
> stack overflow.
Of course. I'm thinking that the best solution would be a hard limit on the
size of the call stack. Then have JS just terminate execution cleanly and
not crash the browser itself.
> > <input type="button" onClick="foo();" value="SMASH!"></input>
> > </html>
> >
> > This situation is handled by both IE and Mozilla 1.0rc1 (no hogs there)
>
> Do you know of they abort, i.e. ever the leave the recursion ? Or do they
> also continue infinitely with the CPU load being lower because of
> threading ?
No idea. Those aren't my words.
--
George Staikos
More information about the kfm-devel
mailing list