CVE-2013-2174

2013-07-31T09:20:25
ID CVE-2013-2174
Type cve
Reporter NVD
Modified 2018-10-30T12:27:33

Description

Heap-based buffer overflow in the curl_easy_unescape function in lib/escape.c in cURL and libcurl 7.7 through 7.30.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted string ending in a "%" (percent) character.