Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.5
CVSSv3

CVE-2017-1000099

Published: 05/10/2017 Updated: 01/11/2017
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N
Subscribe to Haxx

Vulnerability Summary

When asking to get a file from a file:// URL, libcurl provides a feature that outputs meta-data about the file using HTTP-like headers. The code doing this would send the wrong buffer to the user (stdout or the application's provide callback), which could lead to other private data from the heap to get inadvertently displayed. The wrong buffer was an uninitialized memory area allocated on the heap and if it turned out to not contain any zero byte, it would continue and display the data following that buffer in memory.

Vulnerable Product Search on Vulmon Subscribe to Product

haxx libcurl 7.54.1

Vendor Advisories

Amazon Linux AMI: ALAS-2017-889
FILE buffer read out of bounds (CVE-2017-1000099) TFTP sends more than buffer size (CVE-2017-1000100) URL globbing out of bounds read (CVE-2017-1000101) ...
Red Hat: CVE-2017-1000099
When asking to get a file from a file:// URL, libcurl provides a feature that outputs meta-data about the file using HTTP-like headers The code doing this would send the wrong buffer to the user (stdout or the application's provide callback), which could lead to other private data from the heap to get inadvertently displayed The wrong buffer was ...
Arch Linux Issues:
An information disclosure issue has been found in curl < 7550 When asking to get a file from a file:// URL, libcurl provides a feature that outputs meta-data about the file using HTTP-like headers The code doing this would send the wrong buffer to the user (stdout or the application's provide callback), which could lead to other private data ...

References

CWE-200https://security.gentoo.org/glsa/201709-14https://curl.haxx.se/0809C.patchhttp://www.securitytracker.com/id/1039119http://www.securityfocus.com/bid/100281https://curl.haxx.se/docs/adv_20170809C.htmlhttps://nvd.nist.govhttps://alas.aws.amazon.com/ALAS-2017-889.htmlhttps://access.redhat.com/security/cve/cve-2017-1000099
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671unauthorizedCVE-2024-4776CVE-2024-3407CVE-2024-26026CVE-2024-32888wirelessCVE-2024-4656template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook