The smb_request_state function in cURL and libcurl 7.40.0 through 7.42.1 allows remote SMB servers to obtain sensitive information from memory or cause a denial of service (out-of-bounds read and crash) via crafted length and offset values.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Information
Published : 2015-06-22 12:59
Updated : 2018-10-16 18:29
NVD link : CVE-2015-3237
Mitre link : CVE-2015-3237
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
hp
- system_management_homepage
haxx
- curl
- libcurl
oracle
- glassfish_server
- enterprise_manager_ops_center