Published: 19/12/2000 Updated: 03/05/2018

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Buffer overflow in curl earlier than 6.0-1.1, and curl-ssl earlier than 6.0-1.2, allows remote malicious users to execute arbitrary commands by forcing a long error message to be generated.

Vulnerable Product	Search on Vulmon	Subscribe to Product
daniel stenberg curl 6.4
daniel stenberg curl 6.5
daniel stenberg curl 7.3
daniel stenberg curl 7.4
daniel stenberg curl 6.0
daniel stenberg curl 6.1
daniel stenberg curl 7.1
daniel stenberg curl 7.1.1
daniel stenberg curl 6.5.1
daniel stenberg curl 6.5.2
daniel stenberg curl 6.1beta
daniel stenberg curl 6.3
daniel stenberg curl 7.2
daniel stenberg curl 7.2.1

source: wwwsecurityfocuscom/bid/1804/info Curl is an open-source utility for sending or receiving files using URL syntax A vulnerability exists in the version of curl included with Debian GNU/Linux 22 and FreeBSD (prior to 42 release) Note that cURL runs on other platforms as well, and earlier versions may be also vulnerable Curl ...

source: wwwsecurityfocuscom/bid/1804/info Curl is an open-source utility for sending or receiving files using URL syntax A vulnerability exists in the version of curl included with Debian GNU/Linux 22 and FreeBSD (prior to 42 release) Note that cURL runs on other platforms as well, and earlier versions may be also vulnerable Cur ...

NVD-CWE-Other http://www.securityfocus.com/bid/1804 http://archives.neohapsis.com/archives/bugtraq/2000-10/0331.html ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:72.curl.asc https://exchange.xforce.ibmcloud.com/vulnerabilities/5374 https://nvd.nist.gov https://www.exploit-db.com/exploits/20292/

CVE-2000-0973

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect