CVE-2012-3696

Publication date

2012-07-25 19:00:00

Family

apple

State

PUBLISHED

Description

CRLF injection vulnerability in WebKit in Apple Safari before 6.0 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP request splitting attacks via a crafted web site that leverages improper WebSockets URI handling.