CVE-2005-3185
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2005-3185
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Stack-based buffer overflow in the ntlm_output function in http-ntlm.c for (1) wget 1.10, (2) curl 7.13.2, and (3) libcurl 7.13.2, and other products that use libcurl, when NTLM authentication is enabled, allows remote servers to execute arbitrary code via a long NTLM username.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
多家厂商Wget/Curl NTLM用户名处理溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
GNU wget是用于使用HTTP、HTTPS和FTP协议检索文件的免费软件包;curl是使用URL语法传输文件的命令行工具。 wget 1.10, curl 7.13.2,libcurl 7.13 'http-ntlm.c'文件中的ntlm-output 函数存在栈溢出漏洞,当NTLMS设置成启用状态时,允许攻击者通过长NTLM用户名执行任意代码。 在进行内存拷贝操作中没有对用户提供的数据执行充分的边界检查,将用户提供的ntlm memcpy()到ntlmbuf会导致栈溢出: /* size is no
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2005-3185
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2005-3185
请登录查看更多情报信息。
Vendor Advisories for CVE-2005-3185 (27)
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9810vdb-entrysignaturex_refsource_OVAL
Mailing List Discussions for CVE-2005-3185 (1)
- http://lists.trustix.org/pipermail/tsl-announce/2005-October/000354.htmlvendor-advisoryx_refsource_TRUSTIX
Other References for CVE-2005-3185 (11)
- ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.10/SCOSA-2006.10.txtvendor-advisoryx_refsource_SCO
- http://slackware.com/security/viewer.php?l=slackware-security&y=2005&m=slackware-security.519010vendor-advisoryx_refsource_SLACKWARE
- http://www.redhat.com/archives/fedora-announce-list/2005-December/msg00020.htmlvendor-advisoryx_refsource_FEDORA
- http://www.novell.com/linux/security/advisories/2005_63_wget_curl.htmlvendor-advisoryx_refsource_SUSE
- http://www.redhat.com/archives/fedora-announce-list/2005-October/msg00055.htmlvendor-advisoryx_refsource_FEDORA
- http://www.idefense.com/application/poi/display?id=322&type=vulnerabilitiesthird-party-advisoryx_refsource_IDEFENSE
Same Patch Batch · n/a · 2005-10-13 · 9 CVEs total
| CVE-2005-1985 | Microsoft Windows Netware CSNW 网络消息处理 远程溢出漏洞 | |
| CVE-2005-1987 | Microsoft Windows和Microsoft Exchange Server 缓冲区错误漏洞 | |
| CVE-2005-2120 | Microsoft Windows即插即用UMPNPMGR.DLL wsprintfW溢出漏洞(MS05-047) | |
| CVE-2005-2933 | UW-IMAP邮箱名称解析溢出漏洞 | |
| CVE-2005-2943 | Xmail sendmail 命令行参数 远程溢出漏洞 | |
| CVE-2005-2963 | Apache Mod_Auth_Shadow 认证绕过漏洞 | |
| CVE-2005-2992 | Arc不安全临时文件创建漏洞 | |
| CVE-2005-3190 | Computer Associates多个产品HTTP请求远程溢出漏洞 |
IV. Related Vulnerabilities
V. Comments for CVE-2005-3185
No comments yet