Unrated severityNVD Advisory· Published Jul 22, 2010· Updated Jun 16, 2026
CVE-2010-1766
CVE-2010-1766
Description
Off-by-one error in the WebSocketHandshake::readServerHandshake function in websockets/WebSocketHandshake.cpp in WebCore in WebKit before r56380, as used in Qt and other products, allows remote websockets servers to cause a denial of service (memory corruption) or possibly have unspecified other impact via an upgrade header that is long and invalid.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: < r56380
Patches
Vulnerability mechanics
References
15- secunia.com/advisories/40557nvdVendor Advisory
- secunia.com/advisories/41856nvdVendor Advisory
- secunia.com/advisories/43068nvdVendor Advisory
- www.vupen.com/english/advisories/2010/1801nvdVendor Advisory
- lists.fedoraproject.org/pipermail/package-announce/2010-July/044023.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2010-July/044031.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.htmlnvd
- trac.webkit.org/changeset/56380nvd
- www.mandriva.com/security/advisoriesnvd
- www.ubuntu.com/usn/USN-1006-1nvd
- www.vupen.com/english/advisories/2010/2722nvd
- www.vupen.com/english/advisories/2011/0212nvd
- www.vupen.com/english/advisories/2011/0552nvd
- bugs.webkit.org/show_bug.cginvd
- bugzilla.redhat.com/show_bug.cginvd
News mentions
0No linked articles in our index yet.