This host is installed with Baidu Spark Browser and is prone to denial of service vulnerability.

Successful exploitation will allow remote attackers to cause a denial of service conditions resulting in stack overflow via nested calls to the window.print javascript function. Impact Level: Application

No solution or patch is available as of 20th February, 2015. Information regarding this issue will be updated once the solution details are available. For updates refer to http://www.baidu.com

The flaw exist in the window.print JavaScript function when exceptional conditions are not handled properly.

Baidu Spark Browser 26.5.9999.3511 on Windows.

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

• http://cxsecurity.com/issue/WLB-2014070013
• http://packetstormsecurity.com/files/127282
• http://www.exploit-db.com/exploits/33951
• http://www.osvdb.com/108605
• http://www.vfocus.net/art/20140701/11614.html

---

Updated on 2015-03-25