N/A

A vulnerability was found in the ping functionality of the ws module before 1.0.0 which allowed clients to allocate memory by sending a ping frame. The ping functionality by default responds with a pong frame and the previously given payload of the ping frame. This is exactly what you expect, but internally ws always transforms all data that we need to send to a Buffer instance and that is where the vulnerability existed. ws didn't do any checks for the type of data it was sending. With buffers in node when you allocate it when a number instead of a string it will allocate the amount of bytes.

N/A

通过发送数据的信息暴露

ws模块安全漏洞

ws module是一款Node.js WebSocket服务器的实现。 ws模块1.0.0之前版本中的ping功能存在安全漏洞。攻击者可利用该漏洞使ws向服务器发送已被分配使用的缓冲区中的内容，泄露敏感信息。

N/A

N/A