CVE-2013-2174

2013-07-31T13:20:00
ID CVE-2013-2174
Type cve
Reporter cve@mitre.org
Modified 2019-04-22T17:48:00

Description

Heap-based buffer overflow in the curl_easy_unescape function in lib/escape.c in cURL and libcurl 7.7 through 7.30.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted string ending in a "%" (percent) character.