Issue metadata
Sign in to add a comment
|
Security: Infinity loop on web page - User cannot close tab or even browser.
Reported by
jakob.ho...@gmail.com,
Dec 9 2017
|
||||||||||||||||||||
Issue description
VULNERABILITY DETAILS
Okay. When web page run this kind of infinity loop. It freezes tab and browser. You cannot close tab, open new web page or even close browser. So I can kill it using task manager, but regular user has to restart whole computer.
So it means that web page can force you to stay on their page and read some article. Chrome does nothing about it. And you can loose your work on other tabs.
VERSION
Chrome Version: 63.0.3239.84 + (Official Build) (64-bit)
Operating System: Windows 10 Home Insider Preview (1709)
REPRODUCTION CASE
I tried this code from developer console. And it also worked when I uploaded it to my web page.
Well the script I tested:
var e=Document.name;
while(e.indexOf!=null){
e=e.indexOf.name
console.log(e);
}
PS: You can send me a job offer. Because I am software developer. (My CV-Page: jakobhostnik.github.io/CV-Page )
Best regards,
Jakob Hostnik
,
Dec 9 2017
But you still cannot leave infected web page using URL input. You are forced to close tab and open new one. But at least you are able to do that. If you paste this code to developer console you are not.
,
Dec 9 2017
If you leave "infected page" running to long it slows down all other pages. Even if they are in different window. They become in a minute or two not responsive.
,
Dec 9 2017
Whole chrome becomes not responsive. So I guess single web page can crash whole chrome and if you leave it for too long running you cannot switch even tab. (Because chrome is not responsive) imagine that this is one of 30 tabs you have opened. Yes when it runs on web page (not from developer console) for too long you cannot even switch tab or close window. I can see there are some Page not responsive messages generated, but they are not displayed because of slow responding. Chrome starts consume very much ram and processor (i7 is on 100%). And now after 5 minutes I am not able to work on any tab in any window. The only option is to kill google chrome from task manager and loose all my work. I guess spam pages would use it. Or that pages: "We are Police. You did something ilegal on web. Pay some money in bitcoin. Until then your browser is 'kidnaped'." It is security leak. One page should not influence other sites. And after 4 additional comments and tests I hope this is good enough. (This is my first issue report on google) If you need something contact me. I can work with you. Best regard.
,
Dec 9 2017
Test web page with this issue to make your work easier. test.hostnik.rf.gd BR Jakob
,
Dec 9 2017
Probably dupe of Issue 786682
,
Dec 9 2017
So I guess that there is no reward for me... :/ https://www.google.com/about/appsecurity/chrome-rewards/
,
Dec 11 2017
Thanks for the report. This is indeed the same as 786682. For what it's worth, I'm able to close the affected tab in Chrome 62 through 65, just click the "X" and wait for two or three seconds.
,
Mar 21 2018
This bug has been closed for more than 14 weeks. Removing security view restrictions. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot |
|||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||
Comment 1 by jakob.ho...@gmail.com
, Dec 9 2017