cURL/libcURL CVE-2018-1000122 Heap Buffer Overflow Vulnerability

cURL/libcURL is prone to a heap-based buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it into an insufficiently sized buffer.

An attacker can exploit this issue to obtain sensitive information and cause a denial-of-service condition.

cURL/libcURL 7.20.0 through 7.58.0 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus