Vulnerability Development mailing list archives

Re: cURL remote PoC for FBSD

From: sm <sm () resistor net>
Date: Tue, 07 May 2002 17:47:06 +0400

At 23:43 05-05-2002 -0400, KF wrote:

Here is some PoC code for the recent cURL overflows. (FBSD version)
# Remote FreeBSD cURL exploit for versions 6.1 - 7.4


This bug has been fixed in cURL version 7.4.1  See the comments of Daniel
Stenberg, the curl project maintainer at
http://online.securityfocus.com/archive/1/140883

The FreeBSD Security Advisory FreeBSD-SA-00:72 mentions this issue.

-sm

Current thread:

cURL remote PoC for FBSD KF (May 06)
- Re: cURL remote PoC for FBSD Daniel Stenberg (May 07)
- Re: cURL remote PoC for FBSD sm (May 07)
  - Re: cURL remote PoC for FBSD KF (May 07)