CVE-2013-2174
published 2013-07-31CVE-2013-2174: Heap-based buffer overflow in the curl_easy_unescape function in lib/escape.c in cURL and libcurl 7.7 through 7.30.0 allows remote attackers to cause a denial…
PriorityP339medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EPSS
11.12%
95.4th percentile
Heap-based buffer overflow in the curl_easy_unescape function in lib/escape.c in cURL and libcurl 7.7 through 7.30.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted string ending in a "%" (percent) character.
Affected
174 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | curl | < curl 7.31.0-1 (bookworm) | curl 7.31.0-1 (bookworm) |
| haxx | curl | — | — |
| haxx | curl | — | — |
| haxx | curl | — | — |
| haxx | curl | — | — |
| haxx | curl | — | — |
| haxx | curl | — | — |
| haxx | curl | — | — |
| haxx | curl | — | — |
| haxx | curl | — | — |
| haxx | curl | — | — |
| haxx | curl | — | — |
| haxx | curl | — | — |
| haxx | curl | — | — |
| haxx | curl | — | — |
| haxx | curl | — | — |
| haxx | curl | — | — |
| haxx | curl | — | — |
| haxx | curl | — | — |
| haxx | curl | — | — |
| haxx | curl | — | — |
CVSS provenance
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv6.8MEDIUM
vendor_debian6.8MEDIUM
vendor_redhat6.8MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-98vv-mx5c-xg6c: Heap-based buffer overflow in the curl_easy_unescape function in lib/escape
ghsa_unreviewed·2022-05-14
CVE-2013-2174 [MEDIUM] CWE-119 GHSA-98vv-mx5c-xg6c: Heap-based buffer overflow in the curl_easy_unescape function in lib/escape
Heap-based buffer overflow in the curl_easy_unescape function in lib/escape.c in cURL and libcurl 7.7 through 7.30.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted string ending in a "%" (percent) character.
OSV
CVE-2013-2174: Heap-based buffer overflow in the curl_easy_unescape function in lib/escape
osv·2013-07-31·CVSS 6.8
CVE-2013-2174 [MEDIUM] CVE-2013-2174: Heap-based buffer overflow in the curl_easy_unescape function in lib/escape
Heap-based buffer overflow in the curl_easy_unescape function in lib/escape.c in cURL and libcurl 7.7 through 7.30.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted string ending in a "%" (percent) character.
CISA ICS
Hitachi Energy MSM Product
cisa_ics·2022-08-30·CVSS 4.3
[MEDIUM] Hitachi Energy MSM Product
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
Hitachi Energy MSM Product
Last RevisedAugust 30, 2022
Alert CodeICSA-22-242-03
## 1. EXECUTIVE SUMMARY
- CVSS v3 7.5
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: Hitachi Energy
- Equipment: MSM Product
- Vulnerability: Reliance on Uncontrolled Component
## 2. RISK EVALUATION
Successful exploitation of this vulnerability could disrupt the functionality of the MSM web interface, steal sensitive user credentials, or cause a denial-of-service condition.
## 3. TECHNICAL DETAILS
## 3.1 AFFECTED PRODUCTS
Hitachi Energy reports multiple open-source softwar
Ubuntu
curl vulnerability
vendor_ubuntu·2013-07-02
CVE-2013-2174 curl vulnerability
Title: curl vulnerability
Summary: libcurl could be made to crash or run programs as your login if it received
specially crafted input.
Timo Sirainen discovered that libcurl incorrectly handled memory when
parsing URL encoded strings. An attacker could possibly use this issue to
cause libcurl to crash, leading to a denial of service, or execute
arbitrary code.
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
curl: Loop counter error, leading to heap-based buffer overflow when decoding certain URLs
vendor_redhat·2013-06-22·CVSS 6.8
CVE-2013-2174 [MEDIUM] CWE-122 curl: Loop counter error, leading to heap-based buffer overflow when decoding certain URLs
curl: Loop counter error, leading to heap-based buffer overflow when decoding certain URLs
Heap-based buffer overflow in the curl_easy_unescape function in lib/escape.c in cURL and libcurl 7.7 through 7.30.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted string ending in a "%" (percent) character.
Debian
CVE-2013-2174: curl - Heap-based buffer overflow in the curl_easy_unescape function in lib/escape.c in...
vendor_debian·2013·CVSS 6.8
CVE-2013-2174 [MEDIUM] CVE-2013-2174: curl - Heap-based buffer overflow in the curl_easy_unescape function in lib/escape.c in...
Heap-based buffer overflow in the curl_easy_unescape function in lib/escape.c in cURL and libcurl 7.7 through 7.30.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted string ending in a "%" (percent) character.
Scope: local
bookworm: resolved (fixed in 7.31.0-1)
bullseye: resolved (fixed in 7.31.0-1)
forky: resolved (fixed in 7.31.0-1)
sid: resolved (fixed in 7.31.0-1)
trixie: resolved (fixed in 7.31.0-1)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2013-2174 curl: Loop counter error, leading to heap-based buffer overflow when decoding certain URLs [fedora-all]
bugzilla·2013-06-26·CVSS 6.8
CVE-2013-2174 [MEDIUM] CVE-2013-2174 curl: Loop counter error, leading to heap-based buffer overflow when decoding certain URLs [fedora-all]
CVE-2013-2174 curl: Loop counter error, leading to heap-based buffer overflow when decoding certain URLs [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please use the bodhi submission link
noted in the next comment(s). This will include the bug IDs of this
tracking bug as well as the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field when
Bugzilla
CVE-2013-2174 curl: Loop counter error, leading to heap-based buffer overflow when decoding certain URLs [epel-5]
bugzilla·2013-06-26·CVSS 6.8
CVE-2013-2174 [MEDIUM] CVE-2013-2174 curl: Loop counter error, leading to heap-based buffer overflow when decoding certain URLs [epel-5]
CVE-2013-2174 curl: Loop counter error, leading to heap-based buffer overflow when decoding certain URLs [epel-5]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora EPEL.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please use the bodhi submission link
noted in the next comment(s). This will include the bug IDs of this
tracking bug as well as the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field whe
Bugzilla
CVE-2013-2174 curl: Loop counter error, leading to heap-based buffer overflow when decoding certain URLs
bugzilla·2013-05-21·CVSS 6.8
CVE-2013-2174 [MEDIUM] CVE-2013-2174 curl: Loop counter error, leading to heap-based buffer overflow when decoding certain URLs
CVE-2013-2174 curl: Loop counter error, leading to heap-based buffer overflow when decoding certain URLs
A loop counter error, leading to heap-based buffer overflow flaw was found in the URL decoder of cURL, an utility for retrieval of files from remote servers, used to decode certain strings. Remote attacker could provide a specially-crafted string that when processed by the URL decoder of cURL would lead to curl executable crash or, potentially, arbitrary code execution with the privileges of the user running the curl binary.
Advisory: http://curl.haxx.se/docs/adv_20130622.html
Patch: http://curl.haxx.se/libcurl-unescape.patch
Discussion:
This issue affects the versions of the curl package, as shipped with Red Hat Enterprise Linux 5 and 6.
--
This issue affects the versions of the
http://curl.haxx.se/docs/adv_20130622.htmlhttp://lists.opensuse.org/opensuse-updates/2013-07/msg00013.htmlhttp://rhn.redhat.com/errata/RHSA-2013-0983.htmlhttp://www.debian.org/security/2013/dsa-2713http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.htmlhttp://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.htmlhttp://www.securityfocus.com/bid/60737http://www.ubuntu.com/usn/USN-1894-1https://github.com/bagder/curl/commit/192c4f788d48f82c03e9cef40013f34370e90737http://curl.haxx.se/docs/adv_20130622.htmlhttp://lists.opensuse.org/opensuse-updates/2013-07/msg00013.htmlhttp://rhn.redhat.com/errata/RHSA-2013-0983.htmlhttp://www.debian.org/security/2013/dsa-2713http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.htmlhttp://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.htmlhttp://www.securityfocus.com/bid/60737http://www.ubuntu.com/usn/USN-1894-1https://github.com/bagder/curl/commit/192c4f788d48f82c03e9cef40013f34370e90737
2013-07-31
Published