[Forgot Password]
Login  Register Subscribe

24128

 
 

131615

 
 

112965

 
 

909

 
 

87888

 
 

136

Paid content will be excluded from the download.


Download | Alert*
OVAL

Unspecified vulnerability in curl via IP addresses - CVE-2014-3613

Deprecated
ID: oval:org.secpod.oval:def:21806Date: (C)2014-12-01   (M)2018-05-10
Class: VULNERABILITYFamily: unix




The host is installed with curl before 7.38.0 and is prone to an unspecified vulnerability. A flaw is present in the application, which does not properly handle IP addresses in cookie domain names. Successful exploitation allows remote attackers to set cookies for or send arbitrary cookies to certain sites.

Platform:
Red Hat Enterprise Linux 6
Red Hat Enterprise Linux 7
Red Hat Enterprise Linux 5
Product:
curl
Reference:
CVE-2014-3613
CVE    1
CVE-2014-3613
CPE    12
cpe:/a:haxx:curl:7.31.0
cpe:/a:haxx:curl:7.32.0
cpe:/a:haxx:curl:7.36.0
cpe:/a:haxx:curl:7.35.0
...

© SecPod Technologies