The smb_request_state function in cURL and libcurl 7.40.0 through 7.42.1 allows remote SMB servers to obtain sensitive information from memory or cause a denial of service (out-of-bounds read and crash) via crafted length and offset values.
                
            References
                    Configurations
                    Configuration 1 (hide)
| 
 | 
Configuration 2 (hide)
| 
 | 
Configuration 3 (hide)
| 
 | 
History
                    No history.
Information
                Published : 2015-06-22 19:59
Updated : 2025-04-12 10:46
NVD link : CVE-2015-3237
Mitre link : CVE-2015-3237
CVE.ORG link : CVE-2015-3237
JSON object : View
Products Affected
                hp
- system_management_homepage
oracle
- glassfish_server
- enterprise_manager_ops_center
haxx
- curl
- libcurl
CWE
                
                    
                        
                        CWE-20
                        
            Improper Input Validation
