CVE-2013-0249

Published Mar 8, 2013

Last updated 8 years ago

Overview

Description: Stack-based buffer overflow in the Curl_sasl_create_digest_md5_message function in lib/curl_sasl.c in curl and libcurl 7.26.0 through 7.28.1, when negotiating SASL DIGEST-MD5 authentication, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in the realm parameter in a (1) POP3, (2) SMTP or (3) IMAP message.
Source: secalert@redhat.com
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-119

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:haxx:curl:7.26.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D204E994-4591-403C-8EF3-D3B7BF4AA1A6"
          },
          {
            "criteria": "cpe:2.3:a:haxx:curl:7.27.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EBF5418D-1162-4B1E-BC3D-06A3E084BEFB"
          },
          {
            "criteria": "cpe:2.3:a:haxx:curl:7.28.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1CA65F31-3D54-4F66-A0A3-2BD993FF38F7"
          },
          {
            "criteria": "cpe:2.3:a:haxx:curl:7.28.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "41ACC9FE-62FF-424B-B4B8-B033FEAF7686"
          },
          {
            "criteria": "cpe:2.3:a:haxx:libcurl:7.26.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F6AF544C-5F16-4434-B9FB-93B1B7318950"
          },
          {
            "criteria": "cpe:2.3:a:haxx:libcurl:7.27.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CBFD9ED9-2412-44AE-9C55-0ED03A121B23"
          },
          {
            "criteria": "cpe:2.3:a:haxx:libcurl:7.28.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "67CCE31B-ABDA-4F32-BAF1-B1AD0664B3E2"
          },
          {
            "criteria": "cpe:2.3:a:haxx:libcurl:7.28.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9E66A332-ECD1-4452-B444-FB629022FDF0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E2076871-2E80-4605-A470-A41C1A8EC7EE"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References