CVE-2015-3148

2015-04-24T10:59:11
ID CVE-2015-3148
Type cve
Reporter NVD
Modified 2018-01-04T21:30:04

Description

cURL and libcurl 7.10.6 through 7.41.0 do not properly re-use authenticated Negotiate connections, which allows remote attackers to connect as other users via a request.