[Bug 106582] Firefox DOS (kind of) through bad 'preferred applications' custom mail reader command

[Dak]

You have been subscribed to a public bug:

using feisty fawn, updated today (2007/04/14)

basically, you can achieve some DOSage (cpu maxing, rendering firefox
unusable) by going to System > Preferences > Preferred applications >
Mail Reader > Custom > Command, and entering one of the following:

firefox %s

firefox URL %s (eg, firefox www.google.com %s)

then clicking a mailto: link.

firefox %s will cause a new tab to be opened roughly every second,
making firefox unusable

firefox URL %s will cause a new firefox window to open roughly every 5
seconds, with two tabs (homepage and a tab titled 'mailto:email-that-
was-clicked), maxing CPU and network usage, and causing me to have to
xkill firefox.

Note that I tested this with firefox -safe-mode. if you have certain
extensions enabled (eg, tabmix plus), you get slightly different (but
equally annoying) results. eg, with tabmix plus enabled, i got a blank
tab opening, that spawned another blank tab whenever it lost focus
(including being closed).

not sure how serious this is, but like i said you can do some DOS-like
stuff (maxing out cpu etc) with it.

** Affects: firefox (Ubuntu)
     Importance: Undecided
         Status: Unconfirmed

-- 
Firefox DOS (kind of) through bad 'preferred applications' custom mail reader command
https://bugs.launchpad.net/bugs/106582