WebKit WebSockets CVE-2012-3696 HTTP Header Injection Vulnerability

Bugtraq ID: 54700
Class: Input Validation Error
CVE: CVE-2012-3696
Remote: Yes
Local: No
Published: Jul 25 2012 12:00AM
Updated: Sep 19 2012 10:10PM
Credit: David Belcher of the BlackBerry Security Incident Response Team
Vulnerable: WebKit Open Source Project WebKit 1.2.5
WebKit Open Source Project WebKit 1.2.3
WebKit Open Source Project WebKit 1.2.2
WebKit Open Source Project WebKit 2
WebKit Open Source Project WebKit 0
Apple Safari 5.0.6
Apple Safari 5.1.7 for Windows
Apple Safari 5.1.7
Apple Safari 5.1.5 for Windows
Apple Safari 5.1.4 for Windows
Apple Safari 5.1.4
Apple Safari 5.1.1 for Windows
Apple Safari 5.1.1
Apple Safari 5.1 for Windows
Apple Safari 5.1
Apple Safari 5.0.6 for windows
Apple Safari 5.0.5 for Windows
Apple Safari 5.0.5
Apple Safari 5.0.4 for Windows
Apple Safari 5.0.4
Apple Safari 5.0.3 for Windows
Apple Safari 5.0.3
Apple Safari 5.0.2 for Windows
Apple Safari 5.0.2
Apple Safari 5.0.1 for Windows
Apple Safari 5.0.1
Apple Safari 5.0 for Windows
Apple Safari 5.0
Apple iOS 5.1.1
Apple iOS 5.1
Apple iOS 5.0.1
Apple iOS 5
Apple iOS 4.3.5
Apple iOS 4.3
Apple iOS 4.2
Apple iOS 4.1
Apple iOS 4
Apple iOS 3.2
Apple iOS 3.1
Apple iOS 3.0
Apple iOS 2.1
Apple iOS 2.0
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus