Your submission was sent successfully! Close

CVE-2005-3185

Published: 13 October 2005

Stack-based buffer overflow in the ntlm_output function in http-ntlm.c for (1) wget 1.10, (2) curl 7.13.2, and (3) libcurl 7.13.2, and other products that use libcurl, when NTLM authentication is enabled, allows remote servers to execute arbitrary code via a long NTLM username.

Priority

Unknown

Status

Package Release Status
curl
Launchpad, Ubuntu, Debian
Upstream Needs triage

wget
Launchpad, Ubuntu, Debian
Upstream Needs triage