cve/CVE-2013-2174.md at master

0xMarcio/cve

Fork 0

Files

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

924 B

Raw Permalink Blame History

CVE-2013-2174

Description

Heap-based buffer overflow in the curl_easy_unescape function in lib/escape.c in cURL and libcurl 7.7 through 7.30.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted string ending in a "%" (percent) character.

POC

Reference

http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

Github

https://github.com/akaganeite/CVE4PP
https://github.com/cacad-ntu/CZ4062-assignment

924 B Raw Permalink Blame History

CVE-2013-2174

Description

POC

Reference

Github

924 B

Raw Permalink Blame History