For reference: https://curl.haxx.se/docs/security.html …. BTW, how many RCE bugs has curl had that were not from memory corruption? (already know the answer)
https://curl.haxx.se/docs/adv_20160127B.html … , https://curl.haxx.se/docs/adv_20101013.html … , https://curl.haxx.se/docs/adv_20090303.html … look like non-memory-safety RCE?
-
-
Arbitrary file access *can* be RCE. It would usually be for the desktop security model, but not for other niches.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.