Published: 23/04/2018 Updated: 07/11/2023

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 8.1 | Impact Score: 5.9 | Exploitability Score: 2.2

VMScore: 606

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

curl before version 7.52.0 is vulnerable to a buffer overflow when doing a large floating point output in libcurl's implementation of the printf() functions. If there are any application that accepts a format string from the outside without necessary input filtering, it could allow remote attacks.

Vulnerable Product	Search on Vulmon	Subscribe to Product
haxx curl

Synopsis Moderate: httpd24 security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Topic An update for httpd24-httpd, httpd24-nghttp2, and httpd24-curl is now available for Red Hat Software CollectionsRed Hat Product Security has rated this update as having a security impact of ...

Debian Bug report logs - #848958 curl: CVE-2016-9586: printf floating point buffer overflow Package: src:curl; Maintainer for src:curl is Alessandro Ghedini <ghedo@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Wed, 21 Dec 2016 07:48:01 UTC Severity: important Tags: fixed-upstream, patch, se ...

Several security issues were fixed in curl ...

libcurl's implementation of the printf() functions triggers a buffer overflow when doing a large floating point output If there are any application that accepts a format string from the outside without necessary input filtering, it could allow remote attacks This flaw does not exist in the command line tool ...

libcurl's implementation of the printf() functions triggers a buffer overflow when doing a large floating point output The bug occurs when the conversion outputs more than 255 bytes The flaw happens because the floating point conversion is using system functions without the correct boundary checks The functions have been documented as deprecated ...

Critical Infrastructure Sectors: Energy

CWE-122 https://github.com/curl/curl/commit/curl-7_51_0-162-g3ab3c16 https://curl.haxx.se/docs/adv_20161221A.html https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-9586 https://security.gentoo.org/glsa/201701-47 http://www.securitytracker.com/id/1037515 http://www.securityfocus.com/bid/95019 http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html https://lists.debian.org/debian-lts-announce/2018/11/msg00005.html https://access.redhat.com/errata/RHSA-2018:3558 https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E https://access.redhat.com/errata/RHSA-2018:3558 https://nvd.nist.gov https://usn.ubuntu.com/3441-2/https://www.cisa.gov/uscert/ics/advisories/icsa-22-242-03

CVE-2016-9586

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

ICS Advisories

References

Vulmon Search

About

Products

Connect