SUSE-SA:2005:011: curl

medium Nessus Plugin ID 17238

Synopsis

The remote host is missing a vendor-supplied security patch

Description

The remote host is missing the patch for the advisory SUSE-SA:2005:011 (curl).

[email protected] reported a vulnerability in libcurl, the HTTP/FTP retrieval library. This library is used by lots of programs, including YaST2 and PHP4.

The NTLM authorization in curl had a buffer overflow in the base64 decoding which allows a remote attacker using a prepared remote server to execute code for the user using curl.

The Kerberos authorization has a similar bug, but is not compiled in on SUSE Linux.

This is tracked by the Mitre CVE ID CVE-2005-0490.

Solution

http://www.suse.de/security/advisories/2005_11_curl.html

Plugin Details

Severity: Medium

ID: 17238

File Name: suse_SA_2005_011.nasl

Version: 1.11

Agent: unix

Family: SuSE Local Security Checks

Published: 3/1/2005

Updated: 1/14/2021

Supported Sensors: Continuous Assessment, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Medium

Base Score: 5.1

Vector: CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P

Vulnerability Information

Required KB Items: Host/SuSE/rpm-list

Reference Information

CVE: CVE-2005-0490

Detections

Analytics