3 results (0.005 seconds)

CVSS: 7.5EPSS: 0%CPEs: 74EXPL: 0

CVE-2009-2417 – curl: incorrect verification of SSL certificate with NUL in name

https://notcve.org/view.php?id=CVE-2009-2417

lib/ssluse.c in cURL and libcurl 7.4 through 7.19.5, when OpenSSL is used, does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408. lib/ssluse.c en cURL y libcurl v7.4 hasta v7.19.5, cuando se usa OpenSSL, no maneja de forma aecuada el caracter '\0' en un nombre de dominio en el campo sujeto del Common Name (CN) de un certificado X.509, lo que permite a atacantes de hombre en el medio hacer un spoofing de servidores SSL a través de la un certificado de una autoridad de Certificación legítima, manipulado, relativo a CVE_2009-2408. • http://curl.haxx.se/CVE-2009-2417/curl-7.10.6-CVE-2009-2417.patch http://curl.haxx.se/CVE-2009-2417/curl-7.11.0-CVE-2009-2417.patch http://curl.haxx.se/CVE-2009-2417/curl-7.12.1-CVE-2009-2417.patch http://curl.haxx.se/CVE-2009-2417/curl-7.15.1-CVE-2009-2417.patch http://curl.haxx.se/CVE-2009-2417/curl-7.15.5-CVE-2009-2417.patch http://curl.haxx.se/CVE-2009-2417/curl-7.16.4-CVE-2009-2417.patch http://curl.haxx.se/CVE-2009-2417 • CWE-310: Cryptographic Issues •

CVSS: 7.5EPSS: 21%CPEs: 7EXPL: 0

CVE-2007-3564

https://notcve.org/view.php?id=CVE-2007-3564

libcurl 7.14.0 through 7.16.3, when built with GnuTLS support, does not check SSL/TLS certificate expiration or activation dates, which allows remote attackers to bypass certain access restrictions. El libcurl 7.14.0 hasta el 7.16.3, cuando está construido sobre el soporte GnuTLS, no verifica la espiración del certificado SSL/TLS o las fechas de activación, lo que permite a atacantes remotos evitar ciertas restricciones de acceso. • http://secunia.com/advisories/26104 http://secunia.com/advisories/26108 http://secunia.com/advisories/26128 http://secunia.com/advisories/26231 http://www.curl.haxx.se/docs/adv_20070710.html http://www.debian.org/security/2007/dsa-1333 http://www.securityfocus.com/bid/24938 http://www.trustix.org/errata/2007/0023 http://www.ubuntu.com/usn/usn-484-1 http://www.vupen.com/english/advisories/2007/2551 https://exchange.xforce.ibmcloud.com/vulnerabilities/35479 •

CVSS: 7.5EPSS: 1%CPEs: 3EXPL: 0

CVE-2005-3185

https://notcve.org/view.php?id=CVE-2005-3185

Stack-based buffer overflow in the ntlm_output function in http-ntlm.c for (1) wget 1.10, (2) curl 7.13.2, and (3) libcurl 7.13.2, and other products that use libcurl, when NTLM authentication is enabled, allows remote servers to execute arbitrary code via a long NTLM username. • ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.10/SCOSA-2006.10.txt http://docs.info.apple.com/article.html?artnum=302847 http://lists.trustix.org/pipermail/tsl-announce/2005-October/000354.html http://secunia.com/advisories/17192 http://secunia.com/advisories/17193 http://secunia.com/advisories/17203 http://secunia.com/advisories/17208 http://secunia.com/advisories/17228 http://secunia.com/advisories/17247 http://secunia.com/advisories/17297 http://secunia.com/adviso • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •