Signature Detail

Short Name	HTTP:STC:RESIZE-DOS
Severity	Medium
Recommended	No
Category	HTTP
Keywords	Multiple Browser Image Resize Video Driver Denial of Service
Release Date	2004/08/11
Update Number	1213
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: Multiple Browser Image Resize Video Driver Denial of Service

This signature detects attempts to exploit a known vulnerability against an HTML document. Attackers can create a Web site that includes an HTML document with a maliciously crafted IMG tag. Because the IMG tag contains a resize field larger than a video driver can handle, when viewed, the tag can cause a client's video driver to enter an infinite loop and create a denial-of-service condition.

Extended Description

An attacker could cause a Denial of Service (DoS).

References

URL: http://en.wikipedia.org/wiki/HTML_element
URL: http://www.w3schools.com/tags/tag_img.asp

Signature Detail

Short Name

Severity

Recommended

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: Multiple Browser Image Resize Video Driver Denial of Service

Extended Description

References