CVE-2006-1061

EPSS 3.8%

發布日:2006/3/21修改日:2026/4/28

描述

Heap-based buffer overflow in cURL and libcURL 7.15.0 through 7.15.2 allows remote attackers to execute arbitrary commands via a TFTP URL (tftp://) with a valid hostname and a long path.

受影響套件(1)

Debian/curlfrom 0, < 7.15.3-1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2006-1061