Webkit : Security Vulnerabilities, CVEs, Published In 2010 (Denial of service)
Off-by-one error in the WebSocketHandshake::readServerHandshake function in websockets/WebSocketHandshake.cpp in WebCore in WebKit before r56380, as used in Qt and other products, allows remote websockets servers to cause a denial of service (memory corruption) or possibly have unspecified other impact via an upgrade header that is long and invalid.
Max CVSS
7.5
EPSS Score
1.94%
Published
2010-07-22
Updated
2013-02-07
1 vulnerabilities found