always fun when a repro fits a tweet: <body id=x style=margin:5 onload=http://x.style .removeProperty("margin")>
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
so ZDI rejected it because it was not exploitable, due to Memgc?
-
No because it was unlikely to be exploitable: 1) free 2) no time to do anything 3) reuse with little effect to exploit
End of conversation
New conversation -
-
-
Not same than http://blog.skylined.nl/20161101001.html …. But it looks very similar... right?
-
Yes, probably code reuse :)
-
Did you try to repro over IE10/IE11 forcing X-UA-Compatible to IE9? Unfortunately i can't test it since is fixed long ago
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.