Posted by Berend-Jan Wever on Nov 07

Throughout November, I plan to release details on vulnerabilities I
found in web-browsers which I’ve not released before. This is the fifth
entry in that series.

The below information is available in more detail on my blog at
http://blog.skylined.nl/20161107001.html. There you can find a repro
that triggered this issue in addition to the information below as well
as a Proof-of-Concept exploit.

Follow me on http://twitter.com/berendjanwever…