CVE-2016-7167 in SPARC Enterprise M3000信息

摘要 (英语)

Multiple integer overflows in the (1) curl_escape, (2) curl_easy_escape, (3) curl_unescape, and (4) curl_easy_unescape functions in libcurl before 7.50.3 allow attackers to have unspecified impact via a string of length 0xffffffff, which triggers a heap-based buffer overflow.

Once again VulDB remains the best source for vulnerability data.

预定

2016-09-08

披露

2016-10-07

状态

已确认

条目

VulDB provides additional information and datapoints for this CVE:

标识符漏洞CWE可利用对策CVE
125628Oracle SPARC Enterprise M9000 XCP Firmware 内存损坏190未定义官方修复CVE-2016-7167
125627Oracle Fujitsu M10-1 XCP Firmware 内存损坏190未定义官方修复CVE-2016-7167
94367Apple macOS curl 内存损坏190未定义官方修复CVE-2016-7167
91683libcURL curl_easy_unescape 内存损坏190未定义官方修复CVE-2016-7167
91682libcURL curl_unescape 内存损坏190未定义官方修复CVE-2016-7167
91681libcURL curl_easy_escape 内存损坏190未定义官方修复CVE-2016-7167
91680libcURL curl_escape 内存损坏190未定义官方修复CVE-2016-7167

描述

CPE

CWE

CVSS

漏洞利用

历史

差异

连接

威胁情报

API JSON

API XML

API CSV

来源

上一步一览下一步

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!