VYPR
Unrated severityNVD Advisory· Published Dec 22, 2010· Updated Jun 16, 2026

CVE-2010-4576

CVE-2010-4576

Description

browser/worker_host/message_port_dispatcher.cc in Google Chrome before 8.0.552.224 and Chrome OS before 8.0.552.343 does not properly handle certain postMessage calls, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via crafted JavaScript code that creates a web worker.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • Google/Chrome2 versions
    cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*range: <8.0.552.224
    • (no CPE)range: <8.0.552.224
  • Google/ChromeOS2 versions
    cpe:2.3:o:google:chrome_os:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:google:chrome_os:*:*:*:*:*:*:*:*range: <8.0.552.343
    • (no CPE)range: <8.0.552.343

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.