[Forgot Password]
Login  Register Subscribe

23631

 
 

126998

 
 

102010

 
 

909

 
 

80911

 
 

121

Paid content will be excluded from the download.


Download | Alert*


CVE-2014-0015
cURL and libcurl 7.10.6 through 7.34.0, when more than one authentication method is enabled, re-uses NTLM connections, which might allow context-dependent attackers to authenticate as other users via a request.

CVE-2014-0138
The default configuration in cURL and libcurl 7.10.6 before 7.36.0 re-uses (1) SCP, (2) SFTP, (3) POP3, (4) POP3S, (5) IMAP, (6) IMAPS, (7) SMTP, (8) SMTPS, (9) LDAP, and (10) LDAPS connections, which might allow context-dependent attackers to connect as other users via a request, a similar issue to ...

*OVAL
oval:org.secpod.oval:def:1500559
CPE    133
cpe:/a:haxx:libcurl:7.20.1
cpe:/a:haxx:libcurl:7.13.2
cpe:/a:haxx:libcurl:7.13.1
cpe:/a:haxx:libcurl:7.12.1
...

© 2013 SecPod Technologies