Digia : Security Vulnerabilities, CVEs, Published In 2010 (Denial of service)
The QSslSocketBackendPrivate::transmit function in src_network_ssl_qsslsocket_openssl.cpp in Qt 4.6.3 and earlier allows remote attackers to cause a denial of service (infinite loop) via a malformed request.
Max CVSS
5.0
EPSS Score
16.87%
Published
2010-07-02
Updated
2021-06-16
Off-by-one error in the WebSocketHandshake::readServerHandshake function in websockets/WebSocketHandshake.cpp in WebCore in WebKit before r56380, as used in Qt and other products, allows remote websockets servers to cause a denial of service (memory corruption) or possibly have unspecified other impact via an upgrade header that is long and invalid.
Max CVSS
7.5
EPSS Score
1.94%
Published
2010-07-22
Updated
2013-02-07
2 vulnerabilities found