Bring Down Internet Explorer In Six Words

← Back to Stories (view on slashdot.org)

Bring Down Internet Explorer In Six Words

Posted by kdawson on Tuesday August 7, 2007 @09:20PM from the don't-you-think-she-looks-tired dept.

Marcion writes "Some handy Japanese guy called Hamachiya discovered a bug in Internet Explorer. Under certain conditions, an asterisk when used as a wildcard can crash IE as soon as the user attempts to go to another page." The article claims the "five HTML tags and a CSS declaration" crash IE7 as well as IE6, but I couldn't get IE7 to fail. This page says that as of June, IE6 was at about 37% market share and IE7 under 20%.

27 of 239 comments (clear)

Tear in my eye by ceeam · 2007-08-07 21:25 · Score: 5, Insightful

I didn't think I'll see the day when browser crashing on something would be a newsworthy item. We - the industry - have made improvements in the last years I guess.
If you don't speak Japanese.... by Dogtanian · 2007-08-07 21:28 · Score: 4, Funny

...then here's a word perfect translation of that article (courtesy of Babelfish).

Erm... then again, maybe not.

(If you liked that translation, you might enjoy Babelfish's attempt at Slashdot.jp.)

--
"Slashdot - News and Chat Sites Deviant". (Click "homepage" link above for details).
1. Re:If you don't speak Japanese.... by arkhan_jg · 2007-08-07 21:38 · Score: 4, Funny
  
  From slashdot.jp:
  When the policeman of the tie, rule you violate, hello punishment of the kitty?
  
  Heh. I can just imagine a 'tie-inspector' walking round making sure your business attire is up to standard, or else he unleashes an angry cat on you. Or maybe he tortures a cute kitten in front of you, not sure on that point.
  
  --
  Remember kids, it's all fun and games until someone commits wholesale galactic genocide.
2. Re:If you don't speak Japanese.... by Barny · 2007-08-07 22:25 · Score: 5, Informative
  
  http://www.foxnews.com/story/0,2933,292245,00.html
  
  Ask and ye shall receive :)
  
  A bit anti-climactic really.
  
  --
  ...
  /me sighs
3. Re:If you don't speak Japanese.... by Gregory+Cox · 2007-08-07 22:29 · Score: 3, Funny
  
  Obviously it should read:
  When Thai police violate a rule, they get the Hello Kitty punishment.
  See? Makes perfect sense.
  
  --
  If you all Google Slashdot, will it Slashdot Google?
4. Re:If you don't speak Japanese.... by uhmmmm · 2007-08-08 03:15 · Score: 3, Informative
  
  Here's a quick translation I just did:
  
  Hello! Good afternoon!!!!!
  I stumbled across a browser crash, so today I'll tell you about it!
  
  Here it is!
  
  <style>*{position:relative}</style><table><input>< /table>
  
  Sample (If you're using IE, your browser will close! You have been warned!)
  
  It seems IE6 or programs using IE6 components will definitely crash!
  I haven't checked IE7 though!
  
  It seems to be when you have and input or select or such just below a table or tr or such,
  and you use the css wildcard * to set everything to position:relative.
  
  By the way, if the input has its style directly set to relative, it doesn't crash. What's up with that?
  I don't really get it, but it sure is interesting...!
  
  Anyone out there who loves Firefox or Opera should go spread this all over and decrease IE's market share!!!
Hmm.. by wumpus188 · 2007-08-07 21:29 · Score: 4, Informative

It indeed crashes IE here... Windows 2K3, IE7
1. Re:Hmm.. by GIL_Dude · 2007-08-08 00:27 · Score: 3, Funny
  
  IE 7 on Vista here did have the crash just as documented. Open a new tab and start typing a URL and it crashed it.
Bring Down A Website In Six Words by millwall · 2007-08-07 21:30 · Score: 4, Funny

Post
A
Crappy
Article
On
Slashdot
1. Re:Bring Down A Website In Six Words by Whiney+Mac+Fanboy · 2007-08-07 21:45 · Score: 4, Funny
  
  Pacaos? That's an interesting acrostic. What does it mean?
  
  PacaOS is the operating system for Pacas - its a fork of rodentOS. HTH.
  
  --
  There are shills on slashdot. Apparently, I'm one of them.
2. Re:Bring Down A Website In Six Words by Odiumjunkie · 2007-08-07 22:01 · Score: 4, Funny
  
  I discovered a weird IE bug... there are six words that, when included on a webpage, stop IE ever being used on that computer again:
  
  get
  firefox
  from
  mozilla
  dot
  com
Is it crashed or not? by Dogtanian · 2007-08-07 21:44 · Score: 3, Interesting

It indeed crashes IE here... Windows 2K3, IE7 I'm using IE7 bog-standard Windows XP with SP2, and it "crashed" in the manner described for me too. Remember that (as the article states) you have to open a new tab.

It takes a few seconds to crash after the new tab is opened; that's enough time to type in an auto-completed URL and have it start loading. Strange thing about this is that even though Windows shows the standard "crashed" dialog box for IE, beneath that I can still see (e.g.) Slashdot continue to load in the background until I dismiss the dialog.

--
"Slashdot - News and Chat Sites Deviant". (Click "homepage" link above for details).
1. Re:Is it crashed or not? by Bacon+Bits · 2007-08-07 23:49 · Score: 5, Informative
  
  It's not a crash, per se. It's a forced closure due to an illegal operation of one component of the browser with code in mshtml.dll.
  
  An exception was thrown that was not properly caught. The error is caused by improper error trapping. Otherwise, the browser would just render things improperly or claim there was an error on the page because it doesn't properly parse and render the style tag.
  
  --
  The road to tyranny has always been paved with claims of necessity.
2. Re:Is it crashed or not? by GooberToo · 2007-08-08 01:05 · Score: 4, Informative
  
  Pre-tell then, what is a crash?
  
  When an exception is thrown and is not properly caught. The error is caused by improper error trapping. This is a classic "crash." ;)
Bring down my system in 13 chars. by BlackPignouf · 2007-08-07 22:02 · Score: 5, Funny

:(){ :|:& };:
1. Re:Bring down my system in 13 chars. by bob.appleyard · 2007-08-08 03:38 · Score: 3, Informative
  
  The Bourne Shell, actually.
  
  --
  How dare you be so modest!! You conceited bastard!!
No. You're kidding. Can't be. by Opportunist · 2007-08-07 22:11 · Score: 3, Insightful

You can crash IE? Really? With a webpage? Who would have thought?

Seriously, here's a phone. Call someone who cares. Or at least isn't surprised. Or at least thinks it's newsworthy.

I don't care if I have to wave karma goodbye now, but sensibly, is there an event running today that tries to see how many really uninteresting, uninspired and utterly pointless "news" can make it to the front page on a single day? Yes, it's possible to crash IE. Hey, breaking news, you can even crash it in a way that allows you to execute arbitrary code. Wow. Teh horrorz.

This ain't news. It may be a new hole detected, but could we at least get less lurid subject lines that sound like it's the end of the world? How about "new bug in IE detected"? It would have been at least as accurate and more objective. You might get the same "duh, no kidding" replies, but at least people wouldn't make fun of you for making something trivial as an IE bug sound like it's the end of the internet.

--
We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
1. Re:No. You're kidding. Can't be. by bl8n8r · 2007-08-07 23:48 · Score: 3, Insightful
  
  > Seriously, here's a phone. Call someone who cares. Or at least isn't surprised. Or at least thinks it's newsworthy.
  
  Attitudes like this are why computer security is in such a dismal state. Crashing an application from a remote system means that application is not filtering it's input correctly and is subject to a remote compromise. Just because IE goes bu-bye and starts right up again doesn't mean everything is peaches. By the time you've restarted the app or rebooted windows, you may have already been compromised with the software of choice by the remote. This cold be a backdoor, keylogger, trojan whatever - and you won't even know it other than "my computer is slow". People need to wise-up because malware is getting sneakier and more cost effective for the people that write it.
  
  Articles like this are news worthy because it brings light to the fact that something is amiss and needs fixing. Unfortunately, other than negative PR, there's little incentive for proprietary software to fix these things. That's one of the reasons IE has been, and still is, such a security nightmare. Firefox is only about 2/3 better (3 pages vs. 8 pages) judging by number of CVEs*. Still, security is about lessening risk. It's foolish to use IE these days with much better options available.
  
  [*] - https://www.kb.cert.org/vuls/html/search
  
  --
  boycott slashdot February 10th - 17th check out: altSlashdot.org
2. Re:No. You're kidding. Can't be. by InsaneGeek · 2007-08-08 06:39 · Score: 3, Informative
  
  > When was the last time you saw Firefox or Safari or Konquror able to be crashed with a malformed web page?
  
  Umm... 9 days ago?
  
  http://secunia.com/advisories/26201/
  
  The vulnerability is caused due to an input validation error within the handling of system default URIs with registered URI handlers (e.g. "mailto", "news", "nntp", "snews", "telnet"). This can be exploited to execute arbitrary commands when a user e.g. using Firefox visits a malicious website with a specially crafted "mailto" URI containing a "%" character and ends in a certain extension (e.g. ".bat", ".cmd")
  
  This command would make firefox go "away"
  mailto:test%25../../../../windows/system32/tskill. exe firefox.cmd
Re:html source is: by derrida · 2007-08-07 22:35 · Score: 3, Informative

And here is a link to test it.

--
nemesis. Home of an experimental fe code.
Dr.Who by gpmidi · 2007-08-07 22:40 · Score: 3, Funny

Dr.Who: I can bring down your administration in one word. Prime Minister: One word. Even you aren't capable of that. Dr.Who: Okay, six words. Dr.Who (wispers to aid): Don't you think she looks tired?
No big deal. by 140Mandak262Jamuna · 2007-08-07 23:16 · Score: 3, Insightful

First please realize I am no MSFT fanboi, I have been extremely critical of that company in my previous postings.
MSFT should try to fix the bug that is crashing IE, because crashes in IE have a tendency to become a remote execution bug later. But still, no point in bashing MSFT on this issue. Browsers crashing on malformed input is well known. Firefox, my fav and only browser, too crashes often on malformed input. There is this thing called fuzzing, sending deliberately malformed input to the browser and see what happens. Firefox used to crash more often than IE under fuzzing. Now they provide fuzzing tools for their testers to strengthen mozilla products.

--
sed -e 's/Chuck Norris/Rajnikant/g' joke > fact
Common to Trident? by Stefanwulf · 2007-08-07 23:26 · Score: 5, Interesting

TFA's servers aren't responding at the moment, so this might be included, but has anyone tried this with non-IE programs which use the Trident layout engine?

If it's Trident that's bringing down IE, then you're looking at HTML code that could also bring down Windows Media Player, several versions of Outlook and Outlook Express, MSN Messenger, Steam (from Valve), and other applications which use it to render web pages. I think at least some versions of Winamp used trident as well, but I'm not sure about that.
Re:How is this fucking useful ?? by Dragonslicer · 2007-08-07 23:26 · Score: 4, Funny

200 HP? Is your shit a 20th level Barbarian or something?
IE Usage @ w3schools? by asylumx · 2007-08-07 23:37 · Score: 5, Informative

as of June, IE6 was at about 37% market share and IE7 under 20%

Yeah, but don't you think w3schools would be a bit biased? W3schools is a site full of tutorials and information for developers. Developers tend to prefer FireFox due to its robust plugin system and some of the excellent plugins for that system (Firebug, Web Tools, etc.) so I'm not surprised that FireFox has a higher rate of use on such a site. In fact, I am surprised that it's not higher!
So? One can easily crash Firefox too... by bradbury · 2007-08-08 00:24 · Score: 3, Informative

If the point of this item is to point out bugs in IE it isn't alone. I crashed a large Epiphany session with a segmentation violation a couple of days ago and its relatively easy to crash Firefox if you limit the amount of memory available using ulimit (Firefox doesn't catch "early" C++ memory allocation failures and handle them gracefully). Firefox also has the infamous "window unexpectedly destroyed" bug (#263160) for ~3 years (which will crash the browser if you attempt to close the untitled window).

I suspect all of the Mozilla based browsers will effectively die if one throws enough "heavyweight" pages at them (i.e. those which are activity heavy [because there isn't a Javascript/Active HTML/Animated GIF scheduler]) or run out of swap space (again because memory allocation failures are not handled gracefully).

IMO, developers place too much emphasis on feature enhancements rather than making the existing browsers run reliably (bugs shouldn't linger for 3 years), with a minimal machine footprint (Netscape 4.7x required significantly less memory than Firefox) and effective priority scheduling of the "top" window (user responsiveness).
Also crashes Outlook... by eglass1 · 2007-08-08 00:51 · Score: 4, Informative

If you include it in the body of an HTML mail message.