This security bulletin contains one low risk vulnerability.
Exploit availability: NoDescription
The vulnerability allows a remote attacker to perform a denial of service attack.
The vulnerability exists due to infinite loop when processing attributes. A remote attacker can trick the victim to follow a specially crafted link and trigger the infinite loop within jQuery code.
Update to version 3.0.0.
jQuery: 3.0.0 rc1
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?