<iframe height= ' 18082563 ' ></iframe> |
This very small iframe tag (of course, it does not run very small) is a strong enough label to allow a 64-bit Win7 system to crash, which will cause Win7 to take on the famous BSOD error blue screen of Death (BSoD). The vulnerability is reported by W3bd3vil.
The vulnerability was in the 64-bit Win7 Safari browser test, and I hated the blue screen, so no other browsers were tested. Microsoft is further validating the vulnerability, and here are some technical details about the vulnerability:
Note: Please be responsible for your own tests.
Describe:
The vulnerability is due to a crash in memory caused by an error in Win32k.sys, which occurs when the page contains an IFRAME whose Height property is a very large value.
At present, the flaw exists only in the 64-bit Win7 system.
Solution:
There is no effective plan