CVE-2014-0921 Information

Description

The server in IBM MessageSight 1.x before 1.1.0.0-IBM-IMA-IT01015 allows remote attackers to cause a denial of service (daemon crash and message data loss) via malformed headers during a WebSockets connection upgrade.

Reference

http://www-01.ibm.com/support/docview.wss?uid=swg1IC98583 http://www-01.ibm.com/support/docview.wss?uid=swg21670278 https://exchange.xforce.ibmcloud.com/vulnerabilities/92074