Stack-based buffer overflow in the ntlm_output function in http-ntlm.c for (1) wget 1.10, (2) curl 7.13.2, and (3) libcurl 7.13.2, and other products that use libcurl, when NTLM authentication is enabled, allows remote servers to execute arbitrary code via a long NTLM username.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
libcurl libcurl 7.13.2 |
||
wget wget 1.10 |
||
curl curl 7.13.2 |