CVE-2016-4802
HIGHcurl < 7.49.1 - Untrusted Search Path Vulnerability via DLL Hijacking
Title source: llmDescription
Multiple untrusted search path vulnerabilities in cURL and libcurl before 7.49.1, when built with SSPI or telnet is enabled, allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) security.dll, (2) secur32.dll, or (3) ws2_32.dll in the application or current working directory.
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1036008
Vendor Advisory x_refsource_confirm
https://curl.haxx.se/docs/adv_20160530.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/90997
Scores
CVSS v3
7.8
EPSS
0.0061
EPSS Percentile
70.0%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-264
Status
published
Products (1)
haxx/curl
< 7.49.0
Published
Jun 24, 2016
Tracked Since
Feb 18, 2026