Attacker Value

Unknown

(0 users assessed)

Exploitability

Unknown

(0 users assessed)

User Interaction

Unknown

Privileges Required

Unknown

Attack Vector

Unknown

0

CVE-2009-0037

Disclosure Date: March 05, 2009 •

MITRE ATT&CK

Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

The redirect implementation in curl and libcurl 5.11 through 7.19.3, when CURLOPT_FOLLOWLOCATION is enabled, accepts arbitrary Location values, which might allow remote HTTP servers to (1) trigger arbitrary requests to intranet servers, (2) read or overwrite arbitrary files via a redirect to a file: URL, or (3) execute arbitrary commands via a redirect to an scp: URL.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

None

Impact Score:

Unknown

Exploitability Score:

Unknown

Vector:

Attack Vector (AV):

Unknown

Attack Complexity (AC):

Unknown

Privileges Required (PR):

Unknown

User Interaction (UI):

Unknown

Scope (S):

Unknown

Confidentiality (C):

Unknown

Integrity (I):

Unknown

Availability (A):

Unknown

Vendors

curl

Products

References

Canonical

CVE-2009-0037 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0037)

BID-33962 (http://www.securityfocus.com/bid/33962)

Advisory

USN-726-1 (http://www.ubuntu.com/usn/USN-726-1)

SECUNIA-34259 (http://secunia.com/advisories/34259)

http://curl.haxx.se/lxr/source/CHANGES

SECUNIA-35766 (http://secunia.com/advisories/35766)

SECUNIA-34255 (http://secunia.com/advisories/34255)

http://www.redhat.com/support/errata/RHSA-2009-0341.html

DSA-1738 (http://www.debian.org/security/2009/dsa-1738)

XF-curl-location-security-bypass(49030) (https://exchange.xforce.ibmcloud.com/vulnerabilities/49030)

ADV-2009-1865 (http://www.vupen.com/english/advisories/2009/1865)

APPLE-SA-2010-03-29-1 (http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html)

http://wiki.rpath.com/wiki/Advisories:rPSA-2009-0042

http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00001.html

SECUNIA-34138 (http://secunia.com/advisories/34138)

http://curl.haxx.se/docs/adv_20090303.html

SECUNIA-34202 (http://secunia.com/advisories/34202)

20090312 rPSA-2009-0042-1 curl (http://www.securityfocus.com/archive/1/501757/100/0/threaded)

ADV-2009-0581 (http://www.vupen.com/english/advisories/2009/0581)

[Security-announce] 20090710 VMSA-2009-0009 ESX Service Console updates for udev, sudo, and curl (http://lists.vmware.com/pipermail/security-announce/2009/000060.html)

http://support.apple.com/kb/HT4077

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11054

GLSA-200903-21 (http://security.gentoo.org/glsa/glsa-200903-21.xml)

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6074

SECTRACK-1021783 (http://www.securitytracker.com/id?1021783)

SECUNIA-34251 (http://secunia.com/advisories/34251)

SECUNIA-34399 (http://secunia.com/advisories/34399)

20090711 VMSA-2009-0009 ESX Service Console updates for udev, sudo, and curl (http://www.securityfocus.com/archive/1/504849/100/0/threaded)

SECUNIA-34237 (http://secunia.com/advisories/34237)

http://www.vmware.com/security/advisories/VMSA-2009-0009.html

Miscellaneous

http://www.withdk.com/2009/03/03/curllibcurl-redirect-arbitrary-file-access

http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.476602

http://www.withdk.com/archives/Libcurl_arbitrary_file_access.pdf

http://www.withdk.com/2009/03/03/curllibcurl-redirect-arbitrary-file-access/

Rapid7

Technical Analysis