cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: libcurl NTLM Buffer Overflow Vulnerability

From: Daniel Stenberg <daniel-curl_at_haxx.se>
Date: Fri, 14 Oct 2005 10:33:34 +0200 (CEST)

On Fri, 14 Oct 2005, Gerd v. Egidy wrote:

>> Project cURL Security Advisory, October 13th 2005
>> http://curl.haxx.se/docs/security.html

> do you have a CVE number for this?

Indeed I do: CAN-2005-3185

The page at http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-3185 even
started to actually display contents just a short while ago.

I also update the above mentioned security URL with more details and facts
such as this, as soon as they drop in and I get
time.http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-3185

-- 
  Commercial curl and libcurl Technical Support: http://haxx.se/curl.html

Received on 2005-10-14

This message: [ Message body ]
Next message: ztoon: "Static curl with dynamic lib ?"
Previous message: Gerd v. Egidy: "Re: libcurl NTLM Buffer Overflow Vulnerability"
In reply to: Gerd v. Egidy: "Re: libcurl NTLM Buffer Overflow Vulnerability"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]