[Full-Disclosure] IE sp2 and Mozilla Firefox DoS.
ALD, Aditya, Aditya Lalit Deshmukh
aditya.deshmukh at online.gateway.expertworks.net
Mon Dec 27 21:20:50 GMT 2004
>
>Both Firefox & IE supports decompression method 'gzip'
>ie. an extended request header named
>HTTP_ACCEPT_ENCODING like
>HTTP_ACCEPT_ENCODING=gzip,deflate
>By this way, the file can be kept around few kilobytes
>in the server and delivered easily. I wonder, why
>such... simple issue went un-noticed to everyone for
>years...
Dear bipin,
Good observation ! Works for me on mozilla 1.7.5 also on win2k sp4 and all
other patches
But Is this not a small issue that can happen to kind of data? .... 3.5 mb
of data as a pic image or a pic with very high width will also do the same
and there will certainly be more of such doss`
-aditya
________________________________________________________________________
Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com)
Full-Disclosure is hosted and sponsored by Secunia.