CVE-2017-1000254 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Libcurl
Severity
7.5HIGHNVD
EPSS
1.3%
top 20.11%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedOct 6
Latest updateMay 13
Description
libcurl may read outside of a heap allocated buffer when doing FTP. When libcurl connects to an FTP server and successfully logs in (anonymous or not), it asks the server for the current directory with the `PWD` command. The server then responds with a 257 response containing the path, inside double quotes. The returned path name is then kept by libcurl for subsequent uses. Due to a flaw in the string parser for this directory name, a directory name passed like this but without a closing double …
CVSS vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6
Affected Packages2 packages
Patches
🔴Vulnerability Details
3GHSA
▶
CVEList
▶
📋Vendor Advisories
5💬Community
4Bugzilla
▶
Bugzilla▶
CVE-2017-1000254 mingw-curl: curl: FTP PWD response parser out of bounds read [fedora-all]↗2017-10-04