The smb_request_state function in cURL and libcurl 7.40.0 up to and including 7.42.1 allows remote SMB servers to obtain sensitive information from memory or cause a denial of service (out-of-bounds read and crash) via crafted length and offset values.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
haxx libcurl 7.40.0 |
||
haxx libcurl 7.41.0 |
||
haxx curl 7.40.0 |
||
haxx curl 7.41.0 |
||
haxx curl 7.42.0 |
||
haxx curl 7.42.1 |
||
haxx libcurl 7.42.0 |
||
haxx libcurl 7.42.1 |
||
hp system management homepage |
||
oracle glassfish server 3.1.2 |
||
oracle enterprise manager ops center 12.1.4 |
||
oracle enterprise manager ops center 12.2.2 |
||
oracle enterprise manager ops center 12.3.2 |
||
oracle glassfish server 3.0.1 |