[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

95906

 
 

909

 
 

77982

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

Unspecified vulnerability in curl via IP addresses - CVE-2014-3613

Deprecated
ID: oval:org.secpod.oval:def:21806Date: (C)2014-12-01   (M)2017-04-07
Class: VULNERABILITYFamily: unix




The host is installed with curl before 7.38.0 and is prone to an unspecified vulnerability. A flaw is present in the application, which does not properly handle IP addresses in cookie domain names. Successful exploitation allows remote attackers to set cookies for or send arbitrary cookies to certain sites.

Platform:
Red Hat Enterprise Linux 6
Red Hat Enterprise Linux 7
Red Hat Enterprise Linux 5
Product:
curl
Reference:
CVE-2014-3613
CVE    1
CVE-2014-3613
CPE    10
cpe:/a:haxx:curl:7.31.0
cpe:/a:haxx:curl:7.32.0
cpe:/a:haxx:curl:7.36.0
cpe:/a:haxx:curl:7.35.0
...

© 2013 SecPod Technologies