Lucene search

K

PRIOn knowledge basePRION:CVE-2013-2174

HistoryJul 31, 2013 - 1:20 p.m.

Heap overflow

2013-07-3113:20:00

PRIOn knowledge base

www.prio-n.com

2

8.8 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.093 Low

EPSS

Percentile

94.5%

Heap-based buffer overflow in the curl_easy_unescape function in lib/escape.c in cURL and libcurl 7.7 through 7.30.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted string ending in a “%” (percent) character.

CPENameOperatorVersion
ubuntu_linuxeq13.04
ubuntu_linuxeq12.10
ubuntu_linuxeq12.4 lts
ubuntu_linuxeq10.4 lts
curleq7.7
curleq7.21.3
curleq7.10
curleq7.15.1
curleq7.24.0
curleq7.16.1

Rows per page:

1-10 of 1691

References

curl.haxx.se/docs/adv_20130622.html

lists.opensuse.org/opensuse-updates/2013-07/msg00013.html

rhn.redhat.com/errata/RHSA-2013-0983.html

www.debian.org/security/2013/dsa-2713

www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html

www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

www.securityfocus.com/bid/60737

www.ubuntu.com/usn/USN-1894-1

github.com/bagder/curl/commit/192c4f788d48f82c03e9cef40013f34370e90737

8.8 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.093 Low

EPSS

Percentile

94.5%

Related for PRION:CVE-2013-2174

securityvulns2 veracode2 oraclelinux1 nessus25 openvas27 altlinux1 seebug1 ubuntu1 cve1 fedora8 debian2 centos1 mageia1 redhat2 ubuntucve1 debiancve1 slackware1 freebsd1 ibm8 gentoo1 ics1 oracle1