7 matches found
SLES9: Security update for curl
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: curl-devel curl For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5012730 within...
SLES9: Security update for curl
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: curl-devel curl For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5012730 within...
CVE-2005-0490
Multiple stack-based buffer overflows in libcURL and cURL 7.12.1, and possibly other versions, allow remote malicious web servers to execute arbitrary code via base64 encoded replies that exceed the intended buffer lengths when decoded, which is not properly handled by 1 the Curlinputntlm functio...
curl security update
CentOS Errata and Security Advisory CESA-2005:340-01 Updated curl packages are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. cURL is a tool for getting files from FTP, HTTP, Gopher, Telnet, and Dict servers, using any of the support...
CVE-2005-0940
CVE-2005-0940 is a placeholder entry that references CVE-2005-0490 and has been removed from active use. The connected documents provide concrete details for CVE-2005-0490 (CAN-2005-0490), a multi‑stack buffer overflow affecting curl/curl-based components, with remote code execution potential whe...
CVE-2005-0490
Multiple stack-based buffer overflows in libcURL and curl 7.12.1, enabling remote code execution via base64 replies, are described in the CVE-2005-0490 entry and linked F5 BIG-IP advisory SOL4447. The issue stems from improper handling in NTLM authentication (Curl_input_ntlm in http_ntlm.c) and K...
CVE-2005-0490
Multiple stack-based buffer overflows in libcURL and cURL 7.12.1, and possibly other versions, allow remote malicious web servers to execute arbitrary code via base64 encoded replies that exceed the intended buffer lengths when decoded, which is not properly handled by 1 the Curlinputntlm functio...