Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2015-3143

Опубликовано: 24 апр. 2015
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 5

Описание

cURL and libcurl 7.10.6 through 7.41.0 does not properly re-use NTLM connections, which allows remote attackers to connect as other users via an unauthenticated request, a similar issue to CVE-2014-0015.

РелизСтатусПримечание
devel

released

7.38.0-3ubuntu2.2
esm-infra-legacy/trusty

released

7.35.0-1ubuntu2.5
lucid

ignored

end of life
precise

released

7.22.0-3ubuntu4.14
trusty

released

7.35.0-1ubuntu2.5
trusty/esm

released

7.35.0-1ubuntu2.5
upstream

released

7.42.0
utopic

released

7.37.1-1ubuntu3.4
vivid

released

7.38.0-3ubuntu2.2
vivid/stable-phone-overlay

released

7.38.0-3ubuntu2.2

Показывать по

Ссылки на источники

EPSS

Процентиль: 86%
0.03007
Низкий

5 Medium

CVSS2

Связанные уязвимости

redhat логотип

CVE-2015-3143

redhat
больше 10 лет назад

cURL and libcurl 7.10.6 through 7.41.0 does not properly re-use NTLM connections, which allows remote attackers to connect as other users via an unauthenticated request, a similar issue to CVE-2014-0015.

nvd логотип

CVE-2015-3143

nvd
больше 10 лет назад

cURL and libcurl 7.10.6 through 7.41.0 does not properly re-use NTLM connections, which allows remote attackers to connect as other users via an unauthenticated request, a similar issue to CVE-2014-0015.

debian логотип

CVE-2015-3143

debian
больше 10 лет назад

cURL and libcurl 7.10.6 through 7.41.0 does not properly re-use NTLM c ...

github логотип

GHSA-6mxf-77w3-cj5m

github
больше 3 лет назад

cURL and libcurl 7.10.6 through 7.41.0 does not properly re-use NTLM connections, which allows remote attackers to connect as other users via an unauthenticated request, a similar issue to CVE-2014-0015.

suse-cvrf логотип

SUSE-SU-2015:0990-1

suse-cvrf
больше 10 лет назад

Security update for curl

EPSS

Процентиль: 86%
0.03007
Низкий

5 Medium

CVSS2