CVE - CVE - 2005 - 4077

CVE-ID
cve - 2005 - 4077	了解更多国家漏洞数据库(NVD) •CVSS严重性评级•修复信息•••CPE SCAP映射脆弱的软件版本信息
描述
多个cURL库中的这些错误- (libcurl) 7.11.2通过7.15.0允许本地用户引发缓冲区溢出,造成拒绝服务或绕过PHP安全限制通过特定的url(1)是畸形的,可以防止一个终止null字节被添加到主机名或路径缓冲区,或(2)包含一个“?”分隔符的主机名部分,这将导致一个“/”返回生成的字符串。
引用
注意:引用为方便读者提供帮助区分漏洞。并不是完整列表。
苹果:苹果- sa - 2006 - 05 - 11所示 URL: http://lists.apple.com/archives/security-announce/2006/May/msg00003.html 苹果:苹果- sa - 2008 - 03 - 18 URL: http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html 报价:15756 URL: http://www.securityfocus.com/bid/15756 报价:17951 URL: http://www.securityfocus.com/bid/17951 BUGTRAQ: 20051207咨询24/2005:libcurl URL解析漏洞 URL: http://www.securityfocus.com/archive/1/418849/100/0/threaded 证书:ta06 - 132 a URL: http://www.us cert.gov/cas/techalerts/ta06 - 132 a.html 确认:http://curl.haxx.se/docs/adv_20051207.html 确认:http://docs.info.apple.com/article.html?artnum=307562 DEBIAN: dsa - 919 URL: http://www.debian.org/security/2005/dsa - 919 FEDORA: FEDORA - 2005 - 1129 URL: http://www.redhat.com/archives/fedora-announce-list/2005-December/msg00020.html GENTOO: glsa - 200512 - 09年 URL: http://www.gentoo.org/security/en/glsa/glsa - 200512 - 09. - xml GENTOO: glsa 25 - 200603 URL: http://www.gentoo.org/security/en/glsa/glsa - 200603 - 25. - xml MANDRIVA: MDKSA-2005:224 URL:~~http://www.mandriva.com/security/advisories?name=MDKSA-2005:224~~(过时的来源) MISC: http://qa.openoffice.org/issues/show_bug.cgi?id=59032 MISC: http://www.hardened-php.net/advisory_242005.109.html 椭圆形椭圆形:org.mitre.oval: def: 10855 URL: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10855 红帽:RHSA-2005:875 URL: http://www.redhat.com/support/errata/rhsa - 2005 - 875. - html 上海合作组织:scosa - 2006.16 URL: ftp://ftp.sco.com/pub/updates/unixware/scosa - 2006.16 / - scosa 2006.16.txt SECUNIA: 17907 URL: http://secunia.com/advisories/17907 SECUNIA: 17960 URL: http://secunia.com/advisories/17960 SECUNIA: 17961 URL: http://secunia.com/advisories/17961 SECUNIA: 17965 URL: http://secunia.com/advisories/17965 SECUNIA: 17977 URL: http://secunia.com/advisories/17977 SECUNIA: 18105 URL: http://secunia.com/advisories/18105 SECUNIA: 18188 URL: http://secunia.com/advisories/18188 SECUNIA: 18336 URL: http://secunia.com/advisories/18336 SECUNIA: 19261 URL: http://secunia.com/advisories/19261 SECUNIA: 19433 URL: http://secunia.com/advisories/19433 SECUNIA: 19457 URL: http://secunia.com/advisories/19457 SECUNIA: 20077 URL: http://secunia.com/advisories/20077 TRUSTIX: tslsa - 2005 - 0072 URL:~~http://www.trustix.org/errata/2005/0072/~~(过时的源-检查机器Wayback存档) UBUNTU: usn - 228 - 1 URL: https://usn.ubuntu.com/228-1/ VUPEN:阿德- 2005 - 2791 URL:~~http://www.vupen.com/english/advisories/2005/2791~~(过时的来源) VUPEN:阿德- 2006 - 0960 URL:~~http://www.vupen.com/english/advisories/2006/0960~~(过时的来源) VUPEN:阿德- 2006 - 1779 URL:~~http://www.vupen.com/english/advisories/2006/1779~~(过时的来源) VUPEN:阿德- 2008 - 0924 URL:~~http://www.vupen.com/english/advisories/2008/0924/references~~(过时的来源)
分配中央社
主教法冠公司
创建日期记录
20051208	免责声明:记录创建日期可能反映了CVE ID分配或保留的时候,,不一定表示当发现了这个漏洞,与受影响的供应商,在CVE公开披露,或更新。
阶段(遗留)
分配(20051208)
票(遗留)

评论(遗留)

提出(遗留)
N /一个
这是一个记录CVE列表,它提供了共同的标识符公开已知的网络安全漏洞。
CVE使用关键字搜索: 你也可以搜索参考使用CVE参考地图。
更多信息:CVE请求Web表单(从下拉框中选择“其他”)

回到顶部

cve - 2005 - 4077