Google Chrome Blink Serializer::doSerialize Bad Cast
https://packetstormsecurity.com/files/139694/googlechromeblink-badcast.txt
https://packetstormsecurity.com/files/139694/googlechromeblink-badcast.txthttps://packetstormsecurity.com/files/139694/Google-Chrome-Blink-Serializer-doSerialize-Bad-Cast.htmlSat, 12 Nov 2016 10:11:11 GMTWhen serializing JavaScript objects for sending to another window using the postMessage method, the code in blink does not handle Symbol objects correctly and attempts to serialize this kind of object as a regular object, which results in a bad cast. An attacker that can trigger this issue may be able to execute arbitrary code. Chrome version 38 is affected.