CVE-2016-4802 Information
Description
Multiple untrusted search path vulnerabilities in cURL and libcurl before 7.49.1 when built with SSPI or telnet is enabled allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) security.dll (2) secur32.dll or (3) ws2_32.dll in the application or current working directory.
CVSS Vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Reference
http://www.securityfocus.com/bid/90997 http://www.securitytracker.com/id/1036008 https://curl.haxx.se/docs/adv_20160530.html https://curl.haxx.se/docs/adv_20160530.html Multiple untrusted search path vulnerabilities in cURL and libcurl before 7.49.1 when built with SSPI or telnet is enabled allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) security.dll (2) secur32.dll or (3) ws2_32.dll in the application or current working directory. cpe:2.3:a:haxx:curl::::::::
Attack Complexity
LOW
Privileges Required
LOW
User Interaction Required
LOW
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
HIGH
Availability Impact
HIGH
Base Score
HIGH
Base Severity
7.8
Share on: