CVE-2015-3237

Name of the Vulnerable Software and Affected Versions libcurl versions 7.40.0 through 7.42.1

Description The issue allows remote SMB servers to obtain sensitive information from memory or cause a denial of service. This is due to the smb request state() function in libcurl's state machine handling the SMB protocol, where two length and offset values are extracted from network data without boundary checks. These values are then used to determine the data range to send back, allowing malicious SMB servers to trick libcurl into sending unintended data or crashing by accessing invalid memory.

Recommendations For libcurl versions 7.40.0 through 7.42.1, consider disabling the smb request state() function as a temporary workaround until a patch is available. Restrict access to SMB servers to minimize the risk of exploitation. Avoid using libcurl to handle SMB protocol requests until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.