If you haven't seen this or heard about it already, w3bd3vil has posted an issue that affects Windows 7 x64. When using Safari, if you open a HTML document containing an iframe with the height set to a specified value, it will cause a BSOD. I tried this myself on Windows 7 Home Premium SP1 (x64) in the latest version of Safari and my machine bombed right away. I tried this with Chrome on the same system, and for fun, Windows XP SP3 using the latest Safari. I had no issues with the last two tests. I guess this brings a whole new meaning to "malicious iframe". No exploit code has been developed (yet), but I would not be surprised if someone develops something soon.
http://www.theregister.co.uk/2011/12/21/win_7_bug_crash_risk/
No comments:
Post a Comment