← back
CVE-2005-3185

CVE-2005-3185

EPSS 5.2%
Stack-based buffer overflow in the ntlm_output function in http-ntlm.c for (1) wget 1.10, (2) curl 7.13.2, and (3) libcurl 7.13.2, and other products that use libcurl, when NTLM authentication is enabled, allows remote servers to execute arbitrary code via a long NTLM username.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.10/SCOSA-2006.10.txthttp://docs.info.apple.com/article.html?artnum=302847http://lists.trustix.org/pipermail/tsl-announce/2005-October/000354.htmlhttp://secunia.com/advisories/17192http://secunia.com/advisories/17193http://secunia.com/advisories/17203http://secunia.com/advisories/17208http://secunia.com/advisories/17228http://secunia.com/advisories/17247http://secunia.com/advisories/17297http://secunia.com/advisories/17320http://secunia.com/advisories/17400