curl supports the `-t` command line option, known as `CURLOPT_TELNETOPTIONS`in libcurl. This rarely used option is used to send variable=content pairs toTELNET servers.Due to flaw in the option parser for sending `NEW_ENV` variables, libcurlcould be made to pass on uninitialized data from a stack based buffer to theserver. Therefore potentially revealing sensitive internal information to theserver using a clear-text network protocol.This could happen because curl did not call and use sscanf() correctly whenparsing the string provided by the application.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
haxx curl |
||
fedoraproject fedora 33 |
||
netapp cloud backup - |
||
netapp clustered data ontap - |
||
netapp solidfire - |
||
netapp hci management node - |
||
apple macos 11.0 |
||
apple mac os x 10.15.7 |
||
apple macos 11.0.1 |
||
apple macos 11.1 |
||
apple macos 11.1.0 |
||
apple macos 11.2 |
||
apple macos 11.2.1 |
||
apple macos 11.3 |
||
apple macos 11.3.1 |
||
apple macos 11.4 |
||
apple macos 11.5 |
||
oracle peoplesoft enterprise peopletools 8.57 |
||
oracle peoplesoft enterprise peopletools 8.58 |
||
oracle peoplesoft enterprise peopletools 8.59 |
||
oracle mysql server |
||
siemens sinec infrastructure network services |
||
siemens sinema remote connect server |
||
netapp h300s_firmware - |
||
netapp h500s_firmware - |
||
netapp h700s_firmware - |
||
netapp h300e_firmware - |
||
netapp h500e_firmware - |
||
netapp h700e_firmware - |
||
netapp h410s_firmware - |
||
splunk universal forwarder 9.1.0 |
||
splunk universal forwarder |