Vigil@nce - cURL: two vulnerabilities of cookies
September 2014 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
The cURL program can send some user cookies to an attacker owning
a malicious web site.
– Impacted products: cURL, Debian, Fedora, MBS, openSUSE, Ubuntu
– Severity: 2/4
– Creation date: 10/09/2014
DESCRIPTION OF THE VULNERABILITY
Several vulnerabilities were announced in cURL.
cURL can send a cookie belonging to one site to another site
ending with the same IP address fragments. [severity:2/4;
CVE-2014-3613]
cURL can send a cookie belonging to one site to another site
ending with the same public suffix (.co.uk, etc.). [severity:2/4;
CVE-2014-3620]
The cURL program can therefore send some user cookies to an
attacker owning a malicious web site.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/cURL-two-vulnerabilities-of-cookies-15326