Description
The smb_request_state function in cURL and libcurl 7.40.0 through 7.42.1 allows remote SMB servers to obtain sensitive information from memory or cause a denial of service (out-of-bounds read and crash) via crafted length and offset values.
Remediation
References
Related Vulnerabilities
WordPress Plugin WPCB Cross-Site Scripting (2.4.8)
WordPress 2.6.3 Cross-Site Scripting Vulnerability (0.6.2 - 2.6.3)
WordPress Plugin NextGEN Gallery-WordPress Gallery Cross-Site Scripting (2.2.10)
WordPress Plugin Catch Breadcrumb Cross-Site Scripting (1.5.4)
Internet Information Services Improper Input Validation Vulnerability (CVE-2009-4445)