An HTML5 Exploit Can Fill Your Entire Hard Drive Quick

0pTicaL

0pTicaL

New member
Power User
Local time
12:52 PM
Messages
294
Location
San Francisco
A 22-year-old Web developer from Stanford, Feross Aboukhadijeh, has discovered that a slip-up in the implementation of HTML5 in Chrome, Internet Explorer and Safari (Opera has been ruled out) can be exploited to fill a viewer's entire hard drive. He even offers a proof-of-concept of the exploit, and a demonstration page backing up his discovery.

For those who want to see their hard drive load up with data through a web browser, check out FillDisk.com.
Click to expand...
Source

Source code

If clicking on the "Stop the madness" button fails to give back your disk space, you can reclaim it manually (in Chrome) by going to Preferences > Show advanced settings... > Content settings > All cookies and site data... > search for "filldisk" > Remove all.
Click to expand...
This exploit doesn't seem to work in Incognito mode. Can anyone else confirm?
 
Last edited:

My Computer My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Less is more
OS
Windows 7 Ultimate x64 SP1
CPU
Core i7 2600k (4.6GHz)
Motherboard
ASUS P8Z68 Deluxe (3603)
Memory
16GB G.SKILL Ares 1600MHz
Graphics Card(s)
MSI R6970 Lightning
Sound Card
Asus Xonar Essence ST (UNi drivers 1.41)
Monitor(s) Displays
Samsung P2570, CrossOver 27Q LED-P
Screen Resolution
1920*1080, 2560*1440
Hard Drives
256GB OCZ Vector, 2x Hitachi 4TB (7K4000), Hitachi 3TB (7K3000 & 5K3000)
PSU
Seasonic X750
Case
Lian-Li PC-P80N
Cooling
NZXT HAVIK 140 (2x GELID Wing12PL Push/Pull)
Keyboard
CM Storm Trigger (Brown Switch)
Mouse
Logitech G400
Internet Speed
55Mbps/10Mbps
Other Info
Speakers - Klipsch ProMedia 2.1
Headphones - Sennheiser HD595
Router - ASUS RT-N66U
Webcam - Logitech C910
The hack works on Chromium. I just watched my hard drive being filled up. Both normal and incognito are affected.
Side note: The "stop this madness" button on FillDisk doesn't work, so now I have 1GB of cat pictures somewhere on my hard drive :cry:
 

My Computer My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
Dell Inspiron 5547
OS
Microsoft Windows 8.1 64-bit Professional
CPU
Intel(R) Core(TM) i7-4510U CPU @ 2.00GHz
Motherboard
Dell Inc. 08KNCD
Memory
8.00 GB (2 x 4.00 GB)
Graphics Card(s)
AMD Radeon R7 M265
Screen Resolution
1366 x 768 x 4294967296 colors
Hard Drives
(1) 1TB ST1000LM024 HN-M101MBB (2) 2TB Western Digital external hard drive (3) 500GB Packard Bell external hard drive
Mouse
Corsair Vengeance M60
Antivirus
Windows Defender & Malwarebytes
Browser
Firefox, Chromium
Other Info
+ Acer TravelMate 7730G with 32bit Ubuntu 14.04 LTS Trusty Tahr.
They're in your cookies.

To reclaim used space, in your Chrome browser go to Settings -> Advanced Settings -> Content Settings, under Cookies click on "All cookies and site data". Then type "filldisk" in the Search cookies bar and delete all the cookies associated with filldisk.

Are you sure it's working in Incognito mode as well? When I'm in Incognito mode Resource Monitor shows no space being used up.
 

My Computer My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Less is more
OS
Windows 7 Ultimate x64 SP1
CPU
Core i7 2600k (4.6GHz)
Motherboard
ASUS P8Z68 Deluxe (3603)
Memory
16GB G.SKILL Ares 1600MHz
Graphics Card(s)
MSI R6970 Lightning
Sound Card
Asus Xonar Essence ST (UNi drivers 1.41)
Monitor(s) Displays
Samsung P2570, CrossOver 27Q LED-P
Screen Resolution
1920*1080, 2560*1440
Hard Drives
256GB OCZ Vector, 2x Hitachi 4TB (7K4000), Hitachi 3TB (7K3000 & 5K3000)
PSU
Seasonic X750
Case
Lian-Li PC-P80N
Cooling
NZXT HAVIK 140 (2x GELID Wing12PL Push/Pull)
Keyboard
CM Storm Trigger (Brown Switch)
Mouse
Logitech G400
Internet Speed
55Mbps/10Mbps
Other Info
Speakers - Klipsch ProMedia 2.1
Headphones - Sennheiser HD595
Router - ASUS RT-N66U
Webcam - Logitech C910
I already found them yea, thanks anyway!

And yes, it works in incognito (I use Comodo Dragon as browser, which is Chromium based). I had the page open, and my computer tab next to it, and I could see my free space drop like a brick.
 

My Computer My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
Dell Inspiron 5547
OS
Microsoft Windows 8.1 64-bit Professional
CPU
Intel(R) Core(TM) i7-4510U CPU @ 2.00GHz
Motherboard
Dell Inc. 08KNCD
Memory
8.00 GB (2 x 4.00 GB)
Graphics Card(s)
AMD Radeon R7 M265
Screen Resolution
1366 x 768 x 4294967296 colors
Hard Drives
(1) 1TB ST1000LM024 HN-M101MBB (2) 2TB Western Digital external hard drive (3) 500GB Packard Bell external hard drive
Mouse
Corsair Vengeance M60
Antivirus
Windows Defender & Malwarebytes
Browser
Firefox, Chromium
Other Info
+ Acer TravelMate 7730G with 32bit Ubuntu 14.04 LTS Trusty Tahr.
Hmmm, maybe there's something different with the way Comodo implements Incognito vs Chrome.

Resource Monitor shows me my disk's remaining space in real time. In normal mode I can see the exploit eating away disk space and it crashes the browser around ~965MB, in Incognito mode the browser crashes around ~1935MB but no space is consumed.
 

My Computer My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Less is more
OS
Windows 7 Ultimate x64 SP1
CPU
Core i7 2600k (4.6GHz)
Motherboard
ASUS P8Z68 Deluxe (3603)
Memory
16GB G.SKILL Ares 1600MHz
Graphics Card(s)
MSI R6970 Lightning
Sound Card
Asus Xonar Essence ST (UNi drivers 1.41)
Monitor(s) Displays
Samsung P2570, CrossOver 27Q LED-P
Screen Resolution
1920*1080, 2560*1440
Hard Drives
256GB OCZ Vector, 2x Hitachi 4TB (7K4000), Hitachi 3TB (7K3000 & 5K3000)
PSU
Seasonic X750
Case
Lian-Li PC-P80N
Cooling
NZXT HAVIK 140 (2x GELID Wing12PL Push/Pull)
Keyboard
CM Storm Trigger (Brown Switch)
Mouse
Logitech G400
Internet Speed
55Mbps/10Mbps
Other Info
Speakers - Klipsch ProMedia 2.1
Headphones - Sennheiser HD595
Router - ASUS RT-N66U
Webcam - Logitech C910
You must log in or register to reply here.

Similar threads

Can i install Win 7 from a System Image on an external hard drive
Replies
13
Views
2K
NED11WILS
N
Solved Cleaned My ENTIRE Hard Drive. How can I restore it?
2
Replies
26
Views
6K
blunde
B
A cloned external hard drive to replace an internal HDD
Replies
6
Views
5K
mjf
M
help with turning your hard drive into an ISO file
Replies
4
Views
4K
mjf
M
Cloning a windows 7 O/S from a hard drive to an SSD drive.
Replies
4
Views
3K
ThrashZone
ThrashZone
Back
Top