The tailMatch function in cookie.c in cURL and libcurl prior to 7.30.0 does not properly match the path domain when sending cookies, which allows remote malicious users to steal cookies via a matching suffix in the domain of a URL.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
haxx curl 7.28.1 |
||
haxx curl 7.23.0 |
||
haxx curl 7.22.0 |
||
haxx curl 7.21.0 |
||
haxx curl 7.20.1 |
||
haxx curl 7.19.2 |
||
haxx curl 7.19.1 |
||
haxx curl 7.17.0 |
||
haxx curl 7.16.4 |
||
haxx curl 7.15.2 |
||
haxx curl 7.26.0 |
||
haxx curl 7.25.0 |
||
haxx curl 7.21.5 |
||
haxx curl 7.21.4 |
||
haxx curl 7.21.3 |
||
haxx curl 7.19.6 |
||
haxx curl 7.19.5 |
||
haxx curl 7.18.1 |
||
haxx curl 7.18.0 |
||
haxx curl 7.16.0 |
||
haxx curl 7.15.5 |
||
haxx curl 7.14.0 |
||
haxx curl 7.13.2 |
||
haxx curl 7.11.2 |
||
haxx curl 7.11.1 |
||
haxx curl 7.10.2 |
||
haxx curl 7.10.1 |
||
haxx curl 7.9.3 |
||
haxx curl 7.9.2 |
||
haxx curl 7.7.1 |
||
haxx curl 7.7 |
||
haxx curl 7.3 |
||
haxx curl 7.2.1 |
||
haxx curl 6.4 |
||
haxx curl 6.3.1 |
||
haxx curl 7.15.1 |
||
haxx curl 7.12.3 |
||
haxx curl 7.12.2 |
||
haxx curl 7.10.7 |
||
haxx curl 7.10.6 |
||
haxx curl 7.9.7 |
||
haxx curl 7.9.6 |
||
haxx curl 7.9 |
||
haxx curl 7.8 |
||
haxx curl 7.5.2 |
||
haxx curl 7.5.1 |
||
haxx curl 7.4.2 |
||
haxx curl 7.1 |
||
haxx curl 6.5.2 |
||
haxx curl 6.1 |
||
haxx curl 7.28.0 |
||
haxx curl 7.27.0 |
||
haxx curl 7.21.7 |
||
haxx curl 7.21.6 |
||
haxx curl 7.20.0 |
||
haxx curl 7.19.7 |
||
haxx curl 7.19.0 |
||
haxx curl 7.18.2 |
||
haxx curl 7.16.3 |
||
haxx curl 7.16.2 |
||
haxx curl 7.16.1 |
||
haxx curl 7.15.0 |
||
haxx curl 7.14.1 |
||
haxx curl 7.12.1 |
||
haxx curl 7.12.0 |
||
haxx curl 7.10.5 |
||
haxx curl 7.10.4 |
||
haxx curl 7.10.3 |
||
haxx curl 7.9.5 |
||
haxx curl 7.9.4 |
||
haxx curl 7.7.3 |
||
haxx curl 7.7.2 |
||
haxx curl 7.4.1 |
||
haxx curl 7.4 |
||
haxx curl 6.5.1 |
||
haxx curl 6.5 |
||
haxx curl 6.0 |
||
haxx curl 7.24.0 |
||
haxx curl 7.23.1 |
||
haxx curl 7.21.2 |
||
haxx curl 7.21.1 |
||
haxx curl 7.19.4 |
||
haxx curl 7.19.3 |
||
haxx curl |
||
haxx curl 7.17.1 |
||
haxx curl 7.15.4 |
||
haxx curl 7.15.3 |
||
haxx curl 7.13.1 |
||
haxx curl 7.13.0 |
||
haxx curl 7.11.0 |
||
haxx curl 7.10.8 |
||
haxx curl 7.10 |
||
haxx curl 7.9.8 |
||
haxx curl 7.9.1 |
||
haxx curl 7.8.1 |
||
haxx curl 7.6.1 |
||
haxx curl 7.6 |
||
haxx curl 7.2 |
||
haxx curl 7.1.1 |
||
haxx curl 6.3 |
||
haxx curl 6.2 |
||
haxx libcurl 7.14.0 |
||
haxx libcurl 7.14.1 |
||
haxx libcurl 7.16.2 |
||
haxx libcurl 7.16.3 |
||
haxx libcurl 7.28.1 |
||
haxx libcurl 7.18.2 |
||
haxx libcurl 7.15.3 |
||
haxx libcurl 7.15.4 |
||
haxx libcurl 7.17.1 |
||
haxx libcurl 7.18.0 |
||
haxx libcurl 7.21.2 |
||
haxx libcurl 7.23.0 |
||
haxx libcurl 7.15.5 |
||
haxx libcurl 7.16.0 |
||
haxx libcurl 7.19.3 |
||
haxx libcurl |
||
haxx libcurl 7.22.0 |
||
haxx libcurl 7.15.0 |
||
haxx libcurl 7.15.1 |
||
haxx libcurl 7.15.2 |
||
haxx libcurl 7.16.4 |
||
haxx libcurl 7.17.0 |
||
haxx libcurl 7.28.0 |
||
haxx libcurl 7.20.0 |
||
canonical ubuntu linux 12.10 |
||
canonical ubuntu linux 12.04 |
||
canonical ubuntu linux 11.10 |
||
canonical ubuntu linux 10.04 |
||
canonical ubuntu linux 8.04 |
Vulmon