CVE - CVE-2005-4077

CVE-ID
CVE-2005-4077	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Multiple off-by-one errors in the cURL library (libcurl) 7.11.2 through 7.15.0 allow local users to trigger a buffer overflow and cause a denial of service or bypass PHP security restrictions via certain URLs that (1) are malformed in a way that prevents a terminating null byte from being added to either a hostname or path buffer, or (2) contain a "?" separator in the hostname portion, which causes a "/" to be prepended to the resulting string.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BUGTRAQ:20051207 Advisory 24/2005: libcurl URL parsing vulnerability URL:http://www.securityfocus.com/archive/1/418849/100/0/threaded MISC:http://www.hardened-php.net/advisory_242005.109.html MISC:http://qa.openoffice.org/issues/show_bug.cgi?id=59032 CONFIRM:http://curl.haxx.se/docs/adv_20051207.html CONFIRM:http://docs.info.apple.com/article.html?artnum=307562 APPLE:APPLE-SA-2006-05-11 URL:http://lists.apple.com/archives/security-announce/2006/May/msg00003.html APPLE:APPLE-SA-2008-03-18 URL:http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html DEBIAN:DSA-919 URL:http://www.debian.org/security/2005/dsa-919 FEDORA:FEDORA-2005-1129 URL:http://www.redhat.com/archives/fedora-announce-list/2005-December/msg00020.html GENTOO:GLSA-200512-09 URL:http://www.gentoo.org/security/en/glsa/glsa-200512-09.xml GENTOO:GLSA-200603-25 URL:http://www.gentoo.org/security/en/glsa/glsa-200603-25.xml MANDRIVA:MDKSA-2005:224 URL:http://www.mandriva.com/security/advisories?name=MDKSA-2005:224 REDHAT:RHSA-2005:875 URL:http://www.redhat.com/support/errata/RHSA-2005-875.html SCO:SCOSA-2006.16 URL:ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2006.16/SCOSA-2006.16.txt TRUSTIX:TSLSA-2005-0072 URL:http://www.trustix.org/errata/2005/0072/ UBUNTU:USN-228-1 URL:https://usn.ubuntu.com/228-1/ CERT:TA06-132A URL:http://www.us-cert.gov/cas/techalerts/TA06-132A.html BID:15756 URL:http://www.securityfocus.com/bid/15756 BID:17951 URL:http://www.securityfocus.com/bid/17951 OVAL:oval:org.mitre.oval:def:10855 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10855 VUPEN:ADV-2005-2791 URL:http://www.vupen.com/english/advisories/2005/2791 VUPEN:ADV-2006-0960 URL:http://www.vupen.com/english/advisories/2006/0960 VUPEN:ADV-2006-1779 URL:http://www.vupen.com/english/advisories/2006/1779 VUPEN:ADV-2008-0924 URL:http://www.vupen.com/english/advisories/2008/0924/references SECUNIA:17907 URL:http://secunia.com/advisories/17907 SECUNIA:17977 URL:http://secunia.com/advisories/17977 SECUNIA:18105 URL:http://secunia.com/advisories/18105 SECUNIA:18188 URL:http://secunia.com/advisories/18188 SECUNIA:18336 URL:http://secunia.com/advisories/18336 SECUNIA:17960 URL:http://secunia.com/advisories/17960 SECUNIA:17961 URL:http://secunia.com/advisories/17961 SECUNIA:17965 URL:http://secunia.com/advisories/17965 SECUNIA:19261 URL:http://secunia.com/advisories/19261 SECUNIA:19433 URL:http://secunia.com/advisories/19433 SECUNIA:19457 URL:http://secunia.com/advisories/19457 SECUNIA:20077 URL:http://secunia.com/advisories/20077
Assigning CNA
N/A
Date Entry Created
20051208	Disclaimer: The entry creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20051208)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org

Use of the Common Vulnerabilities and Exposures (CVE®) List and the associated references from this website are subject to the terms of use. CVE is sponsored by US-CERT in the office of Cybersecurity and Communications at the U.S. Department of Homeland Security. Copyright © 1999–2018, The MITRE Corporation. CVE and the CVE logo are registered trademarks of The MITRE Corporation. For more information, please contact us.