CVE-2000-0973 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2000-0973

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Buffer overflow in curl earlier than 6.0-1.1, and curl-ssl earlier than 6.0-1.2, allows remote attackers to execute arbitrary commands by forcing a long error message to be generated.

Affected Software

Name	Vendor	Start Version	End Version
Curl	Daniel_stenberg	7.1	7.1
Curl	Daniel_stenberg	6.3	6.3
Curl	Daniel_stenberg	6.5.2	6.5.2
Curl	Daniel_stenberg	6.5	6.5
Curl	Daniel_stenberg	6.1beta	6.1beta
Curl	Daniel_stenberg	6.5.1	6.5.1
Curl	Daniel_stenberg	7.2.1	7.2.1
Curl	Daniel_stenberg	7.2	7.2
Curl	Daniel_stenberg	7.3	7.3
Curl	Daniel_stenberg	6.0	6.0
Curl	Daniel_stenberg	6.4	6.4
Curl	Daniel_stenberg	6.1	6.1
Curl	Daniel_stenberg	7.1.1	7.1.1
Curl	Daniel_stenberg	7.4	7.4

References

http://www.securityfocus.com/bid/1804
http://archives.neohapsis.com/archives/bugtraq/2000-10/0331.html
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:72.curl.asc
https://exchange.xforce.ibmcloud.com/vulnerabilities/5374