Exploitation Summary
EIP tracks 1 public exploit for EIP-2026-103396. PoCs published by Inj3ct0r.
AI-analyzed exploit summary This exploit is a browser-based Denial of Service (DoS) proof-of-concept that crashes multiple browsers by rapidly expanding a string buffer and writing it to the document repeatedly. It leverages JavaScript to overwhelm the browser's memory and rendering capabilities.
Description
All browsers - Crash
Exploits (1)
exploitdb
WORKING POC
by Inj3ct0r · htmldosmultiple
https://www.exploit-db.com/exploits/12491
This exploit is a browser-based Denial of Service (DoS) proof-of-concept that crashes multiple browsers by rapidly expanding a string buffer and writing it to the document repeatedly. It leverages JavaScript to overwhelm the browser's memory and rendering capabilities.
Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target:
Multiple browsers (Mozilla Firefox, Internet Explorer, Google Chrome, Netscape, Opera)
No auth needed
Prerequisites:
Browser with JavaScript enabled
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026