CVE-2008-7244

Firefox < 3.0.1 - Denial of Service via Window Print Loop

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-7244.

AI-analyzed exploit summary This exploit leverages a Denial of Service (DoS) vulnerability in Firefox 3.6.3 and Safari 4.0.5 by recursively calling window.print() within an error handler, causing the browser to crash. The exploit is triggered via a simple HTML page with embedded JavaScript.

Description

Mozilla Firefox 3.0.1 and earlier allows remote attackers to cause a denial of service (browser hang) by calling the window.print function in a loop, aka a "printing DoS attack," possibly a related issue to CVE-2009-0821.

Exploits (1)

exploitdb WORKING POC
htmldososx
https://www.exploit-db.com/exploits/12509

This exploit leverages a Denial of Service (DoS) vulnerability in Firefox 3.6.3 and Safari 4.0.5 by recursively calling window.print() within an error handler, causing the browser to crash. The exploit is triggered via a simple HTML page with embedded JavaScript.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Firefox 3.6.3, Safari 4.0.5
No auth needed
Prerequisites: Victim must visit a malicious webpage
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit x_refsource_misc
http://websecurity.com.ua/2456/
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/506328/100/100/threaded

Scores

EPSS 0.0428
EPSS Percentile 89.1%

Details

CWE
CWE-399
Status published
Products (49)
mozilla/firefox 0.1
mozilla/firefox 0.2
mozilla/firefox 0.3
mozilla/firefox 0.4
mozilla/firefox 0.5
mozilla/firefox 0.6
mozilla/firefox 0.6.1
mozilla/firefox 0.7
mozilla/firefox 0.7.1
mozilla/firefox 0.8
... and 39 more
Published Sep 18, 2009
Tracked Since Feb 18, 2026