EPSS
Percentile
99.7%
Different memory corruptions because of race conditions in OnUnload handler. In addition address bar spoofing and creation of pages can not be left is possible.
vulners.com/securityvulns/securityvulns:doc:16165
vulners.com/securityvulns/securityvulns:doc:16166
vulners.com/securityvulns/securityvulns:doc:16167
vulners.com/securityvulns/securityvulns:doc:16168
vulners.com/securityvulns/securityvulns:doc:16206
vulners.com/securityvulns/securityvulns:doc:16215