Vulnerabilities

CVE-2013-2174

by Fred · 31/07/2013

Heap-based buffer overflow in the curl_easy_unescape function in lib/escape.c in cURL and libcurl 7.7 through 7.30.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted string ending in a "%" (percent) character.

Date published : 2013-07-31

http://www.securityfocus.com/bid/60737

http://curl.haxx.se/docs/adv_20130622.html

Similar

Tags: Cybersecurity Alert