Security Advisory

CVE-2012-3696

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-07-25 19:00:00
Last updated 2024-08-06 20:13:51
Assigner apple
State PUBLISHED

Description

CRLF injection vulnerability in WebKit in Apple Safari before 6.0 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP request splitting attacks via a crafted web site that leverages improper WebSockets URI handling.