PT-2013-1237 · Curl+3 · Libcurl+4

Published

2013-04-12

Updated

2024-06-15

CVE-2013-1944

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions cURL versions prior to 7.30.0 cURL versions prior to 7.34.0-r1 libcurl versions prior to 7.30.0

Description The issue concerns a cookie leak vulnerability in cURL and libcurl, allowing remote attackers to steal cookies via a matching suffix in the domain of a URL. This vulnerability can be used to hijack sessions in targeted attacks. The vulnerability is due to a bug in the tailmatching function, which can wrongly send cookies meant for one domain when communicating with another domain that has a matching suffix.

Recommendations For cURL versions prior to 7.30.0, update to version 7.30.0 or later to resolve the issue. For cURL versions prior to 7.34.0-r1, update to version 7.34.0-r1 or later to resolve the issue. As a temporary workaround, consider disabling the cookie engine in libcurl to minimize the risk of exploitation. Restrict access to sensitive domains to prevent session hijacking until the issue is resolved.

Fix

Buffer Overflow

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-310CWE-119CWE-200CWE-201

Related Identifiers

BDU:2015-09726

BDU:2015-09905

CESA-2013_0771

CVE-2013-1944

DSA-2660-1

OPENSUSE-SU-2024:10303-1

RHSA-2013:0771

RHSA-2013_0771

SUSE-SU-2013_0771-1

SUSE-SU-2013_0772-1

SUSE-SU-2013_0773-1

SUSE-SU-2013_1736-1

Affected Products

Centos

Red Hat

Suse

Curl

Libcurl

PT-2013-1237 · Curl+3 · Libcurl+4

CVE-2013-1944

Weakness Enumeration

Related Identifiers

Affected Products

References · 109