CVE-2005-0490
published 2005-05-02CVE-2005-0490: Multiple stack-based buffer overflows in libcURL and cURL 7.12.1, and possibly other versions, allow remote malicious web servers to execute arbitrary code via…
PriorityP338high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
2.58%
85.9th percentile
Multiple stack-based buffer overflows in libcURL and cURL 7.12.1, and possibly other versions, allow remote malicious web servers to execute arbitrary code via base64 encoded replies that exceed the intended buffer lengths when decoded, which is not properly handled by (1) the Curl_input_ntlm function in http_ntlm.c during NTLM authentication or (2) the Curl_krb_kauth and krb4_auth functions in krb4.c during Kerberos authentication.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | curl | < curl 7.13.0-2 (bookworm) | curl 7.13.0-2 (bookworm) |
| haxx | curl | — | — |
| haxx | curl | >= 0 < 7.13.0-2 | 7.13.0-2 |
| haxx | curl | >= 0 < 7.13.0-2 | 7.13.0-2 |
| haxx | curl | >= 0 < 7.13.0-2 | 7.13.0-2 |
| haxx | curl | >= 0 < 7.13.0-2 | 7.13.0-2 |
| haxx | libcurl | — | — |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.05.1MEDIUMAV:N/AC:H/Au:N/C:P/I:P/A:P
osv8.8HIGH
vendor_debian8.8HIGH
vendor_redhat8.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-7mv6-r5f6-w598: Multiple stack-based buffer overflows in libcURL and cURL 7
ghsa_unreviewed·2022-05-01
CVE-2005-0490 [MEDIUM] CWE-131 GHSA-7mv6-r5f6-w598: Multiple stack-based buffer overflows in libcURL and cURL 7
Multiple stack-based buffer overflows in libcURL and cURL 7.12.1, and possibly other versions, allow remote malicious web servers to execute arbitrary code via base64 encoded replies that exceed the intended buffer lengths when decoded, which is not properly handled by (1) the Curl_input_ntlm function in http_ntlm.c during NTLM authentication or (2) the Curl_krb_kauth and krb4_auth functions in krb4.c during Kerberos authentication.
OSV
CVE-2005-0490: Multiple stack-based buffer overflows in libcURL and cURL 7
osv·2005-05-02·CVSS 8.8
CVE-2005-0490 [HIGH] CVE-2005-0490: Multiple stack-based buffer overflows in libcURL and cURL 7
Multiple stack-based buffer overflows in libcURL and cURL 7.12.1, and possibly other versions, allow remote malicious web servers to execute arbitrary code via base64 encoded replies that exceed the intended buffer lengths when decoded, which is not properly handled by (1) the Curl_input_ntlm function in http_ntlm.c during NTLM authentication or (2) the Curl_krb_kauth and krb4_auth functions in krb4.c during Kerberos authentication.
Ubuntu
cURL vulnerability
vendor_ubuntu·2005-02-28
CVE-2005-0490 cURL vulnerability
Title: cURL vulnerability
Summary: cURL vulnerability
infamous41md discovered a buffer overflow in cURL's NT LAN Manager
(NTLM) authentication handling. By sending a specially crafted long
NTLM reply packet, a remote attacker could overflow the reply buffer.
This could lead to execution of arbitrary attacker specified code with
the privileges of the application using the cURL library.
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
security flaw
vendor_redhat·2005-02-21·CVSS 8.8
CVE-2005-0490 [HIGH] security flaw
security flaw
Multiple stack-based buffer overflows in libcURL and cURL 7.12.1, and possibly other versions, allow remote malicious web servers to execute arbitrary code via base64 encoded replies that exceed the intended buffer lengths when decoded, which is not properly handled by (1) the Curl_input_ntlm function in http_ntlm.c during NTLM authentication or (2) the Curl_krb_kauth and krb4_auth functions in krb4.c during Kerberos authentication.
Debian
CVE-2005-0490: curl - Multiple stack-based buffer overflows in libcURL and cURL 7.12.1, and possibly o...
vendor_debian·2005·CVSS 8.8
CVE-2005-0490 [HIGH] CVE-2005-0490: curl - Multiple stack-based buffer overflows in libcURL and cURL 7.12.1, and possibly o...
Multiple stack-based buffer overflows in libcURL and cURL 7.12.1, and possibly other versions, allow remote malicious web servers to execute arbitrary code via base64 encoded replies that exceed the intended buffer lengths when decoded, which is not properly handled by (1) the Curl_input_ntlm function in http_ntlm.c during NTLM authentication or (2) the Curl_krb_kauth and krb4_auth functions in krb4.c during Kerberos authentication.
Scope: local
bookworm: resolved (fixed in 7.13.0-2)
bullseye: resolved (fixed in 7.13.0-2)
forky: resolved (fixed in 7.13.0-2)
sid: resolved (fixed in 7.13.0-2)
trixie: resolved (fixed in 7.13.0-2)
No detection rules found.
No public exploits indexed.
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000940http://marc.info/?l=full-disclosure&m=110959085507755&w=2http://www.gentoo.org/security/en/glsa/glsa-200503-20.xmlhttp://www.idefense.com/application/poi/display?id=202&type=vulnerabilitieshttp://www.idefense.com/application/poi/display?id=203&type=vulnerabilitieshttp://www.mandriva.com/security/advisories?name=MDKSA-2005:048http://www.novell.com/linux/security/advisories/2005_11_curl.htmlhttp://www.redhat.com/support/errata/RHSA-2005-340.htmlhttp://www.securityfocus.com/bid/12615http://www.securityfocus.com/bid/12616https://exchange.xforce.ibmcloud.com/vulnerabilities/19423https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10273http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000940http://marc.info/?l=full-disclosure&m=110959085507755&w=2http://www.gentoo.org/security/en/glsa/glsa-200503-20.xmlhttp://www.idefense.com/application/poi/display?id=202&type=vulnerabilitieshttp://www.idefense.com/application/poi/display?id=203&type=vulnerabilitieshttp://www.mandriva.com/security/advisories?name=MDKSA-2005:048http://www.novell.com/linux/security/advisories/2005_11_curl.htmlhttp://www.redhat.com/support/errata/RHSA-2005-340.htmlhttp://www.securityfocus.com/bid/12615http://www.securityfocus.com/bid/12616https://exchange.xforce.ibmcloud.com/vulnerabilities/19423https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10273
2005-05-02
Published