CVE-2015-3145 in cURLinformación

Resumen (Inglés)

The sanitize_cookie_path function in cURL and libcurl 7.31.0 through 7.41.0 does not properly calculate an index, which allows remote attackers to cause a denial of service (out-of-bounds write and crash) or possibly have other unspecified impact via a cookie path containing only a double-quote character.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservar

2015-04-10

Divulgación

2015-04-24

Estado

Confirmado

Voces

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerabilidad	CWE	Exp	Con	CVE
75127	cURL/libcURL Cookie Path sanitize_cookie_path desbordamiento de búfer	119	No está definido	Arreglo oficial	CVE-2015-3145

Descripción

CPE

CWE

CVSS

Hazañas

Historia

Diferencia

Relacionar

Inteligencia de amenazas

API JSON

API XML

API CSV

Fuentes

MITRE
NVD
CVE Details

◂ AnteriorVisión De ConjuntoPróximo ▸

Do you need the next level of professionalism?

Upgrade your account now!