CVE-2005-0490

Table of Contents

Impact:
Low
Public Date:
2005-02-21
Bugzilla:
1617532: CVE-2005-0490 security flaw

The MITRE CVE dictionary describes this issue as:

Multiple stack-based buffer overflows in libcURL and cURL 7.12.1, and possibly other versions, allow remote malicious web servers to execute arbitrary code via base64 encoded replies that exceed the intended buffer lengths when decoded, which is not properly handled by (1) the Curl_input_ntlm function in http_ntlm.c during NTLM authentication or (2) the Curl_krb_kauth and krb4_auth functions in krb4.c during Kerberos authentication.

Find out more about CVE-2005-0490 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 3 (curl) RHSA-2005:340 2005-04-05
Red Hat Enterprise Linux 2.1 (curl) RHSA-2005:340 2005-04-05
Red Hat Enterprise Linux 4 (curl) RHSA-2005:340 2005-04-05
Last Modified

CVE description copyright © 2017, The MITRE Corporation