Miggo Logo

CVE-2016-10544: Denial of Service in uws

N/A

CVSS Score

Basic Information

EPSS Score
0.55626%
Published
9/1/2020
Updated
1/9/2023
KEV Status
No
Technology
TechnologyJavaScript

Technical Details

CVSS Vector
-
Package NameEcosystemVulnerable VersionsFirst Patched Version
uwsnpm>= 0.10.0, <= 0.10.80.10.9

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stems from two key flaws: 1) Hub::inflate's lack of decompression size validation before length checks (allowing compressed small payloads to expand beyond limits), and 2) WebSocketImpl's failure to handle inflation errors. The patch adds a 16MB inflation limit in Hub::inflate and error checks in handleFragment, confirming these were the vulnerable points. The functions' roles in decompression and message processing directly align with the described exploit flow.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

*****t** v*rsions o* `uws` *o not prop*rly **n*l* l*r** w**so*k*t m*ss***s w**n `p*rm*ss***-***l*t*` is *n**l**, w*i** m*y r*sult in * **ni*l o* s*rvi** *on*ition. I* `uws` r**i*v*s * ***M* w**so*k*t m*ss*** w**n `p*rm*ss***-***l*t*` is *n**l**, t**

Reasoning

T** vuln*r**ility st*ms *rom two k*y *l*ws: *) `*u*::in*l*t*`'s l**k o* ***ompr*ssion siz* v*li**tion ***or* l*n*t* ****ks (*llowin* *ompr*ss** sm*ll p*ylo**s to *xp*n* **yon* limits), *n* *) `W**So*k*tImpl`'s **ilur* to **n*l* in*l*tion *rrors. T**