cURL/libcURL CURLOPT_ENCODING Option Buffer Overflow Vulnerability

cURL/libcURL is prone to a buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data.

Remote attackers can exploit this issue to execute arbitrary code within the context of the application or crash the application.

Versions prior to cURL/libcURL 7.20.0 are vulnerable.

NOTE: This issue occurs only in the 'zlib-enabled' builds.


 

Privacy Statement
Copyright 2010, SecurityFocus