Strix
26.1K

CVE-2017-1000101

MEDIUMCVSS 6.5/10EPSS 3.88%

Last modified

CVE-2017-1000101 is a medium-severity vulnerability rated 6.5/10 on the CVSS scale. curl supports "globbing" of URLs, in which a user can pass a numerical range to have the tool iterate over those numbers to do a sequence of transfers. In the globbing function that parses the numerical range, there was an omission that made curl read a byte beyond the end of the URL if given a carefully crafted, or just wrongly written, URL. EPSS estimates a 3.88% chance of exploitation in the next 30 days.

Description

curl supports "globbing" of URLs, in which a user can pass a numerical range to have the tool iterate over those numbers to do a sequence of transfers. In the globbing function that parses the numerical range, there was an omission that made curl read a byte beyond the end of the URL if given a carefully crafted, or just wrongly written, URL. The URL is stored in a heap based buffer, so it could then be made to wrongly read something else instead of crashing. An example of a URL that triggers the flaw would be `http://ur%20[0-60000000000000000000`.

Metrics

CVSS 3.1
6.5/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

EPSS Probability
3.88%

88.9th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
HaxxCurl7.4.1
HaxxCurl7.35.0
HaxxCurl7.36.0
HaxxCurl7.37.0
HaxxCurl7.37.1
HaxxCurl7.38.0
HaxxCurl7.39.0
HaxxCurl7.40.0
HaxxCurl7.41.0
HaxxCurl7.42.0
HaxxCurl7.42.1
HaxxCurl7.43.0
HaxxCurl7.44.0
HaxxCurl7.45.0
HaxxCurl7.46.0
HaxxCurl7.47.0
HaxxCurl7.47.1
HaxxCurl7.48.0
HaxxCurl7.49.0
HaxxCurl7.49.1
HaxxCurl7.50.0
HaxxCurl7.50.1
HaxxCurl7.50.2
HaxxCurl7.50.3
HaxxCurl7.51.0
HaxxCurl7.52.0
HaxxCurl7.52.1
HaxxCurl7.53.0
HaxxCurl7.53.1
HaxxCurl7.54.0
HaxxCurl7.54.1
HaxxCurl7.55.0

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2017-1000101?
curl supports "globbing" of URLs, in which a user can pass a numerical range to have the tool iterate over those numbers to do a sequence of transfers. In the globbing function that parses the numerical range, there was an omission that made curl read a byte beyond the end of the URL if given a carefully crafted, or just wrongly written, URL. The URL is stored in a heap based buffer, so it could then be made to wrongly read something else instead of crashing. An example of a URL that triggers the flaw would be `http://ur%20[0-60000000000000000000`.
How severe is CVE-2017-1000101?
CVE-2017-1000101 has a CVSS score of 6.5/10 (MEDIUM severity). The EPSS model estimates a 3.88% probability of exploitation in the next 30 days.
How do I fix CVE-2017-1000101?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2017-1000101?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST