cve/2010/CVE-2010-2621.md

CVE-2010-2621

Description

The QSslSocketBackendPrivate::transmit function in src_network_ssl_qsslsocket_openssl.cpp in Qt 4.6.3 and earlier allows remote attackers to cause a denial of service (infinite loop) via a malformed request.

POC

Reference

• http://aluigi.org/adv/qtsslame-adv.txt
• http://aluigi.org/poc/qtsslame.zip

Github

• https://github.com/ARPSyndicate/cve-scores
• https://github.com/ARPSyndicate/cvemon
• https://github.com/chnzzh/OpenSSL-CVE-lib