CVE-2018-1000300

Name of the Vulnerable Software and Affected Versions curl versions 7.54.1 through 7.59.0

Description The issue is caused by a heap-based buffer overflow when closing an FTP connection with very long server command replies. This can allow a remote attacker to execute arbitrary code or cause a denial of service. The vulnerability is triggered when the FTP server response data exceeds the default buffer size of 16 KB allocated in the closure handle, leading to a buffer overwrite. The contents and size of the overwrite are controllable by the server.

Recommendations For curl versions 7.54.1 through 7.59.0, update to a version prior to 7.54.1 or version 7.60.0 and later to resolve the issue. As a temporary workaround, consider restricting the use of FTP connections with long server command replies until a patch is available. Avoid using the closure handle internally when an FTP connection gets shut down, as this can lead to a buffer overwrite.