cURL / Mailing Lists / curl-library / Single Mail

curl-library

Malformed URLs using curl

From: Guenther Boelter <gboelter_at_gbsconsult.net>
Date: Wed, 21 Jan 2009 22:12:32 +0800

Hello!

In esniper ( http://esniper.sourceforge.net/ ) many times already I
had a problem with malfomed URLs like this:

Cannot connect to URL hPW>s://signin.ebay.com/ws/eBayISAPI.dll?SignIn
Cannot connect to URL p.V>s://signin.ebay.com/ws/eBayISAPI.dll?SignIn
Cannot connect to URL zXV>s://signin.ebay.com/ws/eBayISAPI.dll?SignIn
Cannot connect to URL ^X}.<------>s://signin.ebay.com/ws/eBayISAPI.dll?SignIn
Cannot connect to URL H..>s://signin.ebay.com/ws/eBayISAPI.dll?SignIn
Cannot connect to URL ؔ.<>s://signin.ebay.com/ws/eBayISAPI.dll?SignIn

Is it possiple, that the old libcurl URL Buffer Overflow is back in
curl, like it was reported here:
http://curl.haxx.se/docs/adv_20051207.html

Fedora 9 - 2.6.27.9-73.fc9.i686

[root@localhost ~]# curl -V
curl 7.18.2 (i386-redhat-linux-gnu) libcurl/7.18.2 NSS/3.12.2.0
zlib/1.2.3 libidn/0.6.14 libssh2/0.18
Protocols: tftp ftp telnet dict ldap ldaps http file https ftps scp sftp
Features: GSS-Negotiate IDN IPv6 Largefile SSL libz

libcurl-7.18.2-7.fc9.i386
libcurl-devel-7.18.2-7.fc9.i386
curl-7.18.2-7.fc9.i386

esniper-2-19-0.tgz

Sorry, I am very new here and it's possible, that this problem is
already known.

Regards

Guenther

Received on 2009-01-21

This message: [ Message body ]
Next message: Daniel Stenberg: "Re: Malformed URLs using curl"
Previous message: Tim Tassonis: "Re: Curl and ODBC?????"
Next in thread: Daniel Stenberg: "Re: Malformed URLs using curl"
Reply: Daniel Stenberg: "Re: Malformed URLs using curl"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]