Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

[curl] CVE-2023-38039: HTTP header allocation DOS

Medium
I
Internet Bug Bounty
Submitted None

Team Summary

Official summary from Internet Bug Bounty

CVE-2023-38039 HTTP headers eat all memory Project curl Security Advisory, September 13 2023 - Permalink VULNERABILITY When curl retrieves an HTTP response, it stores the incoming headers so that they can be accessed later via the libcurl headers API. However, curl did not have a limit on the size or quantity of headers it would accept in a response, allowing a malicious server to stream an endless series of headers to a client and eventually cause curl to run out of heap memory. Full Security Advisory: https://curl.se/docs/CVE-2023-38039.html

Actions:
View on HackerOne
Reported by selmelc

Vulnerability Details

Technical details and impact analysis

Allocation of Resources Without Limits or Throttling
Hello reporting for CVE-2023-38039 which has been fixed in the latest release of curl today. Link to original report : #2072338 Thanks for your help, if there's anything else you need from me I'll happily share. Have a nice day ! ## Impact DOS/overloading of user's system through malicious HTTP server interaction with curl's header parsing.

Related CVEs

Associated Common Vulnerabilities and Exposures

CVE-2023-38039 UNKNOWN

When curl retrieves an HTTP response, it stores the incoming headers so that they can be accessed later via the libcurl headers API. However, curl did not have a limit in how many or how large headers it would accept in a response, allowing a malicious server to stream an …

Report Details

Additional information and metadata

State

Closed

Substate

Resolved

Bounty

$2540.00

Submitted

Weakness

Allocation of Resources Without Limits or Throttling