CVE-2015-3153medium
New! CVE Severity Now Using CVSS v3
The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Description
The default configuration for cURL and libcurl before 7.42.1 sends custom HTTP headers to both the proxy and destination server, which might allow remote proxy servers to obtain sensitive information by reading the header contents.
References
http://curl.haxx.se/docs/adv_20150429.html
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10743
http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html
http://lists.opensuse.org/opensuse-updates/2015-05/msg00017.html
http://www.debian.org/security/2015/dsa-3240
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
http://www.securityfocus.com/bid/74408
http://www.securitytracker.com/id/1032233
http://www.ubuntu.com/usn/USN-2591-1
https://kc.mcafee.com/corporate/index?page=content&id=SB10131
Vulnerable Software
Configuration 1
OR
cpe:2.3:a:oracle:enterprise_manager_ops_center:*:*:*:*:*:*:*:* versions up to 12.1.3 (inclusive)
cpe:2.3:a:oracle:enterprise_manager_ops_center:12.2.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:enterprise_manager_ops_center:12.2.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:enterprise_manager_ops_center:12.3.0:*:*:*:*:*:*:*
Configuration 2
OR
cpe:2.3:a:haxx:curl:*:*:*:*:*:*:*:* versions up to 7.42.0 (inclusive)
cpe:2.3:a:haxx:libcurl:*:*:*:*:*:*:*:* versions up to 7.42.0 (inclusive)
Configuration 3
OR
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
Configuration 4
OR
Configuration 5
OR
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 132283 | EulerOS 2.0 SP3 : curl (EulerOS-SA-2019-2566) | Nessus | Huawei Local Security Checks | medium |
| 131902 | EulerOS 2.0 SP2 : curl (EulerOS-SA-2019-2410) | Nessus | Huawei Local Security Checks | critical |
| 8981 | Mac OS X < 10.10.5 Multiple Vulnerabilities | Nessus Network Monitor | Operating System Detection | high |
| 8864 | cURL / libcURL 7.x < 7.42.1 Proxied Traffic HTTP Server Header Remote Disclosure | Nessus Network Monitor | Web Clients | medium |
| 85408 | Mac OS X 10.10.x < 10.10.5 Multiple Vulnerabilities | Nessus | MacOS X Local Security Checks | high |
| 83988 | SUSE SLED12 / SLES12 Security Update : curl (SUSE-SU-2015:0990-1) | Nessus | SuSE Local Security Checks | high |
| 83903 | SUSE SLED11 / SLES11 Security Update : curl (SUSE-SU-2015:0962-1) | Nessus | SuSE Local Security Checks | medium |
| 83841 | FreeBSD : cURL -- sensitive HTTP server headers also sent to proxies (27f742f6-03f4-11e5-aab1-d050996490d0) | Nessus | FreeBSD Local Security Checks | medium |
| 83395 | openSUSE Security Update : curl (openSUSE-2015-356) | Nessus | SuSE Local Security Checks | medium |
| 83182 | Ubuntu 12.04 LTS / 14.04 LTS / 14.10 / 15.04 : curl vulnerabilities (USN-2591-1) | Nessus | Ubuntu Local Security Checks | high |
| 83146 | Debian DSA-3240-1 : curl - security update | Nessus | Debian Local Security Checks | medium |