[Pidgin] #3568: BMP file memory DoS vulnerability
Pidgin
trac at pidgin.im
Tue Oct 16 12:51:58 EDT 2007
#3568: BMP file memory DoS vulnerability
-----------------------+----------------------------------------------------
Reporter: kuscsikp | Owner: MarkDoliner
Type: defect | Status: new
Priority: minor | Milestone: 2.2.2
Component: ICQ | Version: 2.2.1
Resolution: | Keywords: BMP DoS
Pending: 0 |
-----------------------+----------------------------------------------------
Comment (by kuscsikp):
It is a bmp image with 8000x8000 size. But, only the first 40 Kbytes are
there, some megabytes from the end of the file are cut down. Sending this
file is fast (only 40 kbytes to send), but processing or displaying it
needs a large amount of memory(64x3 megabytes) and time. Similar problems
are at the firefox:
http://158.197.33.91/~kuscsikp/overflow/ie.html
Try to open this in a firefox browser.
--
Ticket URL: <http://developer.pidgin.im/ticket/3568#comment:4>
Pidgin <http://pidgin.im>
Pidgin
More information about the Tracker
mailing list