Lucene search
Tenable801393.PRMHistoryJul 01, 2013 - 12:00 a.m.
cURL/libcURL 'Curl_sasl_create_digest_md5_message()' Stack Buffer Overflow Vulnerability
2013-07-0100:00:00
Tenable
www.tenable.com
7
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS
0.093
Percentile
94.7%
A stack buffer overflow flaw was found due to the application failing to properly bounds-check user supplied data before copying it into an insufficiently sized buffer. A remote attacker could exploit this issue to execute arbitrary code in the context of the affected application. (CVE-2013-2174)
Affected versions include versions 7.26.0 through 7.28.1.
Binary data 801393.prmRelated
nessus
nessus
cURL/libcURL 'Curl_sasl_create_digest_md5_message()' Stack Buffer Overflow
2013-07-01 00:00:00
SuSE 11.3 Security Update : curl (SAT Patch Number 7932)
2013-07-18 00:00:00
Debian DSA-2713-1 : curl - heap overflow
2013-06-25 00:00:00
securityvulns
securityvulns
libcurl uninitialized memory reference
2013-07-01 00:00:00
[ MDVSA-2013:180 ] curl
2013-07-01 00:00:00
nvd
nvd
CVE-2013-2174
2013-07-31 13:20:25
openvas
openvas
Oracle: Security Advisory (ELSA-2013-0983)
2015-10-06 00:00:00
Debian Security Advisory DSA 2713-1 (curl - heap overflow)
2013-06-24 00:00:00
SUSE: Security Advisory (SUSE-SU-2013:1166-1)
2021-06-09 00:00:00
oraclelinux
oraclelinux
curl security update
2013-06-25 00:00:00
prion
prion
Heap overflow
2013-07-31 13:20:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:55:13
Denial Of Service (DoS)
2018-07-25 05:49:29
cvelist
cvelist
CVE-2013-2174
2013-07-31 10:00:00
cve
cve
CVE-2013-2174
2013-07-31 13:20:25
seebug
seebug
cURL/libcURL 'curl_easy_unescape()'堆内存破坏漏洞
2013-06-26 00:00:00
ubuntu
ubuntu
curl vulnerability
2013-07-02 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 6 package curl version 7.24.0-alt1.M60P.1
2013-06-24 00:00:00
redhat
redhat
(RHSA-2013:0983) Moderate: curl security update
2013-06-25 00:00:00
(RHSA-2013:1076) Important: rhev-hypervisor6 security and bug fix update
2013-07-16 00:00:00
freebsd
freebsd
cURL library -- heap corruption in curl_easy_unescape
2013-06-22 00:00:00
slackware
slackware
[slackware-security] curl
2013-06-23 22:07:06
ubuntucve
ubuntucve
CVE-2013-2174
2013-06-24 00:00:00
debiancve
debiancve
CVE-2013-2174
2013-07-31 13:20:25
centos
centos
curl, libcurl security update
2013-06-26 02:20:36
fedora
fedora
[SECURITY] Fedora 19 Update: curl-7.29.0-7.fc19
2013-06-29 18:44:03
[SECURITY] Fedora 19 Update: curl-7.29.0-13.fc19
2014-02-15 20:02:19
[SECURITY] Fedora 17 Update: curl-7.24.0-10.fc17
2013-07-23 01:11:16
mageia
mageia
Updated curl packages fix CVE-2013-2174
2013-06-26 22:44:41
debian
debian
[SECURITY] [DSA 2713-1] curl security update
2013-06-24 21:18:14
[SECURITY] [DSA 2713-1] curl security update
2013-06-24 21:18:14
gentoo
gentoo
cURL: Multiple vulnerabilities
2014-01-20 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in cURL affect System x Integrated Management Module (IMM) (CVE-2013-2174, CVE-2014-0015, CVE-2014-138, CVE-2014-0139)
2019-01-31 01:35:01
ics
ics
Hitachi Energy MSM Product
2022-08-30 12:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - July 2015
2015-07-14 00:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS
0.093
Percentile
94.7%
Related for 801393.PRM