cURL/libcURL 'smb_request_state()' Function Security Vulnerability

cURL/libcURL is prone to a security vulnerability that exists in the state machine function that handles the SMB protocol.

Successfully exploiting this issue may allow an attacker to obtain sensitive information or to cause a denial of service condition.

cURL/libcURL 7.40.0 versions through 7.42.1 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus