Description
The smb_request_state function in cURL and libcurl 7.40.0 through 7.42.1 allows remote SMB servers to obtain sensitive information from memory or cause a denial of service (out-of-bounds read and crash) via crafted length and offset values.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Symposium Multiple Vulnerabilities (14.05.02)
WordPress Plugin WP jPlayer Cross-Site Scripting (0.1)
Magento CVE-2019-7928 Vulnerability (CVE-2019-7928)
Apache HTTP Server Other Vulnerability (CVE-2005-3352)
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-11588)