Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

This site is deprecated. Please CLICK HERE for latest updates

Short Name

 HTTP:BROWSER:MARQUEE-TAG-DOS

Severity

 Minor

Recommended

 No

Recommended Action

 Drop

Category

 HTTP

Keywords

 Multiple Browser Marquee DOS

Release Date

 2006/11/30

Update Number

 1213

Supported Platforms

 idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

HTTP: Multiple Browser Marquee DOS


This signature detects attempt to exploit a known vulnerability against multiple browsers like Mozilla, Seamonkey. The vulnerability occurs when the browser is parsing certain HTML content. A successful attacker can consume excessive CPU resources in affected browsers, denying service to legitimate users.

Extended Description

Multiple browsers are prone to a denial-of-service vulnerability when parsing certain HTML content. Successfully exploiting this issue allows attackers to consume excessive CPU resources in affected browsers, denying service to legitimate users. The following are vulnerable: Mozilla Firefox 1.5.0.3 Internet Explorer 6.0 on Microsoft Windows XP Other versions and products may also be affected.

Affected Products

  • Apple safari 4.0.1
  • Apple safari 4.0.2
  • Apple safari 4.0.2 For Windows
  • Apple safari 4.0.3
  • Apple safari 4.0.3 For Windows
  • Apple safari 4.0.4
  • Apple safari 4.0.4 For Windows
  • Apple safari 4 Beta
  • Apple safari 4 For Windows
  • Flock flock 0.7
  • Microsoft internet_explorer 6.0
  • Microsoft internet_explorer 6.0 SP1
  • Mozilla firefox 1.5.0.3
  • Mozilla firefox 2.0.0.1
  • Mozilla firefox 2.0.0.10
  • Mozilla firefox 2.0.0.11
  • Mozilla firefox 2.0.0.12
  • Mozilla firefox 2.0.0.13
  • Mozilla firefox 2.0.0.14
  • Mozilla firefox 2.0.0.15
  • Mozilla firefox 2.0.0.16
  • Mozilla firefox 2.0.0.17
  • Mozilla firefox 2.0.0.18
  • Mozilla firefox 2.0.0.2
  • Mozilla firefox 2.0.0.3
  • Mozilla firefox 2.0.0.4
  • Mozilla firefox 2.0.0.5
  • Mozilla firefox 2.0.0.6
  • Mozilla firefox 2.0.0.7
  • Mozilla firefox 2.0.0.8
  • Mozilla firefox 2.0.0.9
  • Mozilla firefox 3.0
  • Mozilla firefox 3.0.1
  • Mozilla firefox 3.0.2
  • Mozilla firefox 3.0.3
  • Mozilla firefox 3.0.4
  • Mozilla firefox 3.0.5
  • Mozilla firefox 3.0.6
  • Mozilla firefox 3.0 Beta 5
  • Mozilla grand_paradiso 3.0a1
  • Mozilla seamonkey 1.1.11
  • Mozilla seamonkey 1.1.12
  • Mozilla seamonkey 1.1.13
  • Mozilla seamonkey 1.1.14
  • Nokia n95_phone
  • Opera_software opera_web_browser 8.0.0
  • Opera_software opera_web_browser 8.0.0 1
  • Opera_software opera_web_browser 8.0.0 2
  • Opera_software opera_web_browser 8.50.0
  • Opera_software opera_web_browser 8.51.0
  • Opera_software opera_web_browser 8.52
  • Opera_software opera_web_browser 8.53
  • Opera_software opera_web_browser 8.54
  • Opera_software opera_web_browser 8 Beta 3

References

  • BugTraq: 18165
  • CVE: CVE-2006-2723
  • URL: http://www.securiteam.com/securitynews/5XP0215IUO.html
  • URL: http://www.milw0rm.com/exploits/1867

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out