Heap-based buffer overflow in cURL and libcURL 7.15.0 up to and including 7.15.2 allows remote malicious users to execute arbitrary commands via a TFTP URL (tftp://) with a valid hostname and a long path.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
daniel stenberg curl 7.15.1 |
||
daniel stenberg curl 7.15.2 |
||
daniel stenberg curl 7.15.0 |