Pages: [1]

Author Topic: XSS Infinite Loop/DoS  (Read 2462 times)

0 Members and 1 Guest are viewing this topic.

Offline vezzy

  • Royal Highness
  • ****
  • Posts: 771
  • Cookies: 172
    • View Profile
XSS Infinite Loop/DoS
« on: December 18, 2012, 01:21:49 am »
Alright, I thought I would share this tiny logical footnote on XSS, one of the more unconventional (and arguably useless) ways to exploit it. I've posted this on boards before, so yeah.

Theoretical URL and payload:

Code: [Select]
http://example.com/index.php?s=<script>document.location=document.location</script>
It's self-explanatory, really. You tell the current document to go to itself ad nauseam, creating an infinite loop where the document is pinpointed to execute the current location constantly.

Or you have a rapid-fire automatic F5 key, the most primitive form of DoS attack. While not serving much practical purpose, I guess it could somehow be integrated as a decoy attack.

Here is a working example, courtesy of the American Nazi Party:

http://americannaziparty.com/contact.php?sendto=1-->"><script>document.location=document.location</script>
Report to moderator   Logged
Quote from: Dippy hippy
Just brushing though. I will be semi active mainly came to find a HQ botnet, like THOR or just any p2p botnet

Offline Polyphony

  • VIP
  • Knight
  • *
  • Posts: 178
  • Cookies: 23
    • View Profile
Re: XSS Infinite Loop/DoS
« Reply #1 on: December 18, 2012, 04:24:51 am »
Lol, that's pretty neat. ;)
Report to moderator   Logged
Code: [Select]
<Spacecow_> for that matter I have trouble believing bitches are made out of ribs
<Gundilido> we are the revolutionary vanguard fighting for the peoples right to display sombrero dawning poultry
<Spacecow> did they see your doodle?
<~phage> Maybe
<+Unresolved> its just not creative enough for me
<+Unresolved> my imagination is to big to something so simple

Offline techb

  • Soy Sauce Feeler
  • Global Moderator
  • King
  • *
  • Posts: 2350
  • Cookies: 345
  • Aliens do in fact wear hats.
    • View Profile
    • github
Re: XSS Infinite Loop/DoS
« Reply #2 on: December 18, 2012, 05:36:46 am »
I seen the effect, nifty. But wouldn't this be local? If the server didn't load it from the DB or anything and your just send a req, I don't see it DDoSing anything but yourself. Not on the example page anyway.
Report to moderator   Logged
>>>import this
-----------------------------

Offline vezzy

  • Royal Highness
  • ****
  • Posts: 771
  • Cookies: 172
    • View Profile
Re: XSS Infinite Loop/DoS
« Reply #3 on: December 18, 2012, 05:48:38 am »
I haven't actually tested this seriously to come to a definite conclusion. I assume a slowdown would be possible, if executed on multiple machines simultaneously.
Report to moderator   Logged
Quote from: Dippy hippy
Just brushing though. I will be semi active mainly came to find a HQ botnet, like THOR or just any p2p botnet

Offline Polyphony

  • VIP
  • Knight
  • *
  • Posts: 178
  • Cookies: 23
    • View Profile
Re: XSS Infinite Loop/DoS
« Reply #4 on: December 18, 2012, 02:02:48 pm »
That would take A TON of people to actually DoS somebody like this, but I'm pretty sure it would work better on an "id=" database query or something, so it had to pull stuff from the DB over and over... but still it would take A TON of people doing it at the same time to make any sort of effect lol.
Report to moderator   Logged
Code: [Select]
<Spacecow_> for that matter I have trouble believing bitches are made out of ribs
<Gundilido> we are the revolutionary vanguard fighting for the peoples right to display sombrero dawning poultry
<Spacecow> did they see your doodle?
<~phage> Maybe
<+Unresolved> its just not creative enough for me
<+Unresolved> my imagination is to big to something so simple
Pages: [1]