Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-1405

Malware in sbrugna...

6.5CVSS7AI score0.03875EPSS
Exploits0References14
Veracode
Veracode
added 2018/05/31 3:37 a.m.27 views

Out Of Bounds (OOB) Read Through URL Globbing

libcurl.so is vulnerable to out of bounds OOB read through URL globbing. The vulnerability exists as a given URL can cause libcurl.so to read a byte beyond the end of the URL...

6.5CVSS6.7AI score0.03875EPSS
Exploits0References9Affected Software5
Debian CVE
Debian CVE
added 2017/10/04 1:0 a.m.42 views

CVE-2017-1000101

curl supports "globbing" of URLs, in which a user can pass a numerical range to have the tool iterate over those numbers to do a sequence of transfers. In the globbing function that parses the numerical range, there was an omission that made curl read a byte beyond the end of the URL if given a...

6.5CVSS7.1AI score0.03875EPSS
Exploits0
OSV
OSV
added 2017/08/19 9:58 a.m.10 views

MGASA-2017-0281 Updated curl packages fix security vulnerabilities

When asking to get a file from a file:// URL, libcurl provides a feature that outputs meta-data about the file using HTTP-like headers. The code doing this would send the wrong buffer to the user stdout or the application's provide callback, which could lead to other private data from the heap to...

6.5CVSS6.6AI score0.03958EPSS
Exploits0References5
Mageia
Mageia
added 2017/08/19 9:58 a.m.64 views

Updated curl packages fix security vulnerabilities

When asking to get a file from a file:// URL, libcurl provides a feature that outputs meta-data about the file using HTTP-like headers. The code doing this would send the wrong buffer to the user stdout or the application's provide callback, which could lead to other private data from the heap to...

6.5CVSS0.3AI score0.03958EPSS
Exploits0References4
OSV
OSV
added 2017/08/16 9:24 a.m.9 views

SUSE-SU-2017:2174-1 Security update for curl

This update for curl fixes the following issues: - CVE-2017-1000100: TFP sends more than buffer size and it could lead to a denial of service bsc1051644 - CVE-2017-1000101: URL globbing out of bounds read could lead to a denial of service bsc1051643...

6.5CVSS6.6AI score0.03958EPSS
Exploits0References5
OSV
OSV
added 2017/08/09 8:0 a.m.9 views

CURL-CVE-2017-1000101 URL globbing out of bounds read

curl supports "globbing" of URLs, in which a user can pass a numerical range to have the tool iterate over those numbers to do a sequence of transfers. In the globbing function that parses the numerical range, there was an omission that made curl read a byte beyond the end of the URL if given a...

6.5CVSS6.9AI score0.03875EPSS
Exploits0
FreeBSD
FreeBSD
added 2017/08/09 12:0 a.m.48 views

cURL -- multiple vulnerabilities

The cURL project reports: FILE buffer read out of bounds TFTP sends more than buffer size URL globbing out of bounds read...

6.5CVSS7.2AI score0.03875EPSS
Exploits0References1
Hacker One
Hacker One
added 2017/08/01 6:13 p.m.54 views

Internet Bug Bounty: CVE-2017-1000101: cURL: URL globbing out of bounds read

FYI, this security advisory will not be released until 9 August 2017: curl supports "globbing" of URLs, in which a user can pass a numerical range to have the tool iterate over those numbers to do a sequence of transfers. In the globbing function that parses the numerical range, there was an...

4.3CVSS6.7AI score0.03875EPSS
Exploits0
Rows per page
Query Builder