Описание
Multiple serious vulnerabilities have been found in cURL. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service or conduct other unknown impact.
Below is a complete list of vulnerabilities
- Improper re-use of authenticated Negotiate and NTLM connections can be exploited remotely via a specially designed request;
- An improper index calculation can be exploited remotely via a specially designed cookie or host name.
Первичный источник обнаружения
Связанные продукты
Список CVE
- CVE-2015-3148 critical
- CVE-2015-3145 critical
- CVE-2015-3143 critical
- CVE-2015-3144 critical
Смотрите также
Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com
Нашли неточность в описании этой уязвимости? Дайте нам знать!