libcurl wrongly allows cookies to be set for Top Level Domains (TLDs) if thehost name is provided with a trailing dot.curl can be told to receive and send cookies. curl's "cookie engine" can bebuilt with or without [Public Suffix List](publicsuffix.org/)awareness. If PSL support not provided, a more rudimentary check exists to atleast prevent cookies from being set on TLDs. This check was broken if thehost name in the URL uses a trailing dot.This can allow arbitrary sites to set cookies that then would get sent to adifferent and unrelated site or domain.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
haxx curl |
||
netapp hci_bootstrap_os - |
||
netapp clustered data ontap - |
||
netapp solidfire \\& hci management node - |
||
netapp hci compute node - |
||
netapp solidfire\\, enterprise sds \\& hci storage node - |
||
netapp h410s_firmware - |
||
netapp h700s_firmware - |
||
netapp h500s_firmware - |
||
netapp h300s_firmware - |
||
splunk universal forwarder 9.1.0 |
||
splunk universal forwarder |