Chrome Universal XSS using stack overflow exceptions (CVE-2015-1303)

VULNERABILITY DETAILS When the maximum call stack size is exceeded, a RangeError object is created using isolate's current context. Thus, if a cross-origin context had been entered through the V8WrapperInstantiationScope constructor, for example, a cross-origin exception will be propagated to the...