Me, myself & IT

cURL Binary Executables for Windows^™ NT

Purpose
Download
Installation
Deinstallation

Purpose

Static linked binary executables of cURL for the I386 alias x86, AMD64 alias x64 and IA64 processor architectures of Microsoft^® Windows NT, built with the ~~Platform SDK for Windows Server 2003 R2~~ Microsoft Visual C++ Compiler 2010 SP1 from update 2519277, for use on Windows ~~2000~~ XP and newer versions of Windows NT, using SChannel alias WinSSL and zlib.

Microsoft Windows 7 [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation. All rights reserved.

X:\>i386\curl.exe -V
curl 7.64.1 (i386-pc-win32) libcurl/7.64.1 WinSSL zlib/1.2.11
Release-Date: 2019-03-27
Protocols: dict file ftp ftps gopher http https imap imaps ldap pop3 pop3s rtsp smb smbs smtp smtps telnet tftp
Features: AsynchDNS IPv6 Largefile SSPI Kerberos SPNEGO NTLM SSL libz

X:\>i386\libcurl.exe -V
curl 7.64.1 (i386-pc-win32) libcurl/7.64.1 WinSSL zlib/1.2.11
Release-Date: 2019-03-27
Protocols: dict file ftp ftps gopher http https imap imaps ldap pop3 pop3s rtsp smb smbs smtp smtps telnet tftp
Features: AsynchDNS IPv6 Largefile SSPI Kerberos SPNEGO NTLM SSL libz

X:\>amd64\curl.exe -V
curl 7.64.1 (x86_64-pc-win32) libcurl/7.64.1 WinSSL zlib/1.2.11
Release-Date: 2019-03-27
Protocols: dict file ftp ftps gopher http https imap imaps ldap pop3 pop3s rtsp smb smbs smtp smtps telnet tftp
Features: AsynchDNS IPv6 Largefile SSPI Kerberos SPNEGO NTLM SSL libz

X:\>amd64\libcurl.exe -V
curl 7.64.1 (x86_64-pc-win32) libcurl/7.64.1 WinSSL zlib/1.2.11
Release-Date: 2019-03-27
Protocols: dict file ftp ftps gopher http https imap imaps ldap pop3 pop3s rtsp smb smbs smtp smtps telnet tftp
Features: AsynchDNS IPv6 Largefile SSPI Kerberos SPNEGO NTLM SSL libz

X:\>

CURL.EXE runs stand-alone, LIBCURL.EXE depends on LIBCURL.DLL.

Note: unlike other binary executables for Windows they show the official cURL logo as icon, and contain an embedded Application Manifest to protect against DLL redirection on Windows XP and newer versions of Windows NT as well as DLL spoofing alias DLL preloading, directory poisoning, binary planting, DLL hijacking and DLL side-loading on Windows 7 and newer versions of Windows NT!
See curl-7.60.0.patch for the changes applied to the source tree.

Caveat: the statements

There is nothing we can do to prevent against this.
[…]
There is nothing we can do to fix this, it is endemic in the design of Windows.

in cURL’s security advisory from May 30, 2016 are outright wrong: the Win32 function SetDefaultDllDirectories(), introduced with the optional update 2533623 as well as the security update MS12-081 alias 2758857 and available on Windows Vista^® and newer versions of Windows^™ NT since then, and the /DEPENDENTLOADFLAG:‹…› option of LINK.EXE, supported on Windows 10 1607 alias Anniversary Update (codenamed Redstone 1) and newer versions of Windows NT, control the DLL search order during run-time.

Download

The binary executables and some text files are packaged in the (compressed and digitally signed) cabinet file curl-7.64.1.cab:

Microsoft Windows XP [Version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.

X:\>EXTRACT.EXE /D curl-7.64.1.cab
Microsoft (R) Cabinet Extraction Tool - Version 5.1.2600.5512
Copyright (c) Microsoft Corporation. All rights reserved..

 Cabinet curl-7.64.1.cab

03-25-2019  9:42:48a A---        13,090 CURL.Bugs
03-25-2019  9:42:50a A---        68,676 CURL.FAQ
03-25-2019  9:42:48a A---         6,277 CURL.Features
03-25-2019  9:42:50a A---        29,774 CURL.Known_Bugs
03-25-2019  9:42:48a A---         1,110 CURL.License
05-16-2018 10:09:24p A---         4,473 CURL.Patch
03-27-2019  7:53:48a A---        12,551 CURL.Release_Notes
03-25-2019  9:42:46a A---         1,659 CURL.TXT
03-29-2019  6:21:00p A---       877,568 AMD64\CURL.EXE
03-29-2019  6:22:34p A---       566,272 AMD64\LIBCURL.DLL
03-29-2019  6:22:56p A---       452,096 AMD64\LIBCURL.EXE
03-29-2019  6:22:34p A---        17,894 AMD64\LIBCURL.LIB
03-29-2019  6:25:10p A---       796,160 I386\CURL.EXE
03-29-2019  6:26:54p A---       500,224 I386\LIBCURL.DLL
03-29-2019  6:27:14p A---       421,888 I386\LIBCURL.EXE
03-29-2019  6:26:54p A---        18,280 I386\LIBCURL.LIB
03-29-2019  6:14:40p A---     1,775,616 IA64\CURL.EXE
03-29-2019  6:16:32p A---     1,321,984 IA64\LIBCURL.DLL
03-29-2019  6:16:58p A---       788,992 IA64\LIBCURL.EXE
03-29-2019  6:16:32p A---        21,222 IA64\LIBCURL.LIB
                20 Files      7,695,806 bytes

X:\>DIR curl-7.64.1.cab
 Volume in drive X has no label.
 Volume Serial Number is 1957-0427

 Directory of X:\

03/29/2019  06:41 PM         1,715,528 curl-7.64.1.cab
               1 File(s)      1,715,528 bytes
               0 Dir(s)    9,876,543,210 bytes free

X:\>

Run the command line

"%SystemRoot%\System32\Expand.exe" curl-7.64.1.cab /F:* "‹target directory›"

on Windows Vista and newer versions of Windows NT to extract all files into the specified directory, preserving their paths.

Note: Expand.exe from prior versions of Windows NT ignore the paths and junk them; use Extract.exe from the Support Tools on Windows XP and Windows Server 2003 instead!

Note: switch to Details view and turn on the Path column when you open curl-7.64.1.cab in Windows Explorer!

Installation

Download the package curl-7.64.1.cab and verify its digital signature, then open it in Windows Explorer and extract its contents into a directory of your choice.

Note: be sure to select the binary executables that match the processor architecture of your machine (as shown in the Path column of the Details view)!

Deinstallation

Remove the extracted contents.

Contact and Feedback

If you miss anything here, have additions, comments, corrections, criticism or questions, want to give feedback, hints or tipps, report broken links, bugs, deficiencies, errors, inaccuracies, misrepresentations, omissions, shortcomings, vulnerabilities or weaknesses, …: don’t hesitate to contact me and feel free to ask, comment, criticise, flame, notify or report!

Use the X.509 certificate to send S/MIME encrypted mail.

Note: email in weird format and without a proper sender name is likely to be discarded!

I dislike HTML (and even weirder formats too) in email, I prefer to receive plain text.
I also expect to see your full (real) name as sender, not your nickname.
I abhor top posts and expect inline quotes in replies.

Terms and Conditions

By using this site, you signify your agreement to these terms and conditions. If you do not agree to these terms and conditions, do not use this site!

The software and the documentation on this site are provided as is without any warranty, neither express nor implied.
In no event will the author be held liable for any damage(s) arising from the use of the software or the documentation.
Permission is granted to use the current version of the software and the current version of the documentation solely for personal private and non-commercial purposes.
An individuals use of the software or the documentation in his or her capacity or function as an agent, (independent) contractor, employee, member or officer of a business, corporation or organisation (commercial or non-commercial) does not qualify as personal private and non-commercial purpose.
Without written approval from the author the software or the documentation must not be used for a business, for commercial, corporate, governmental, military or organisational purposes of any kind, or in a commercial, corporate, governmental, military or organisational environment of any kind.
Redistribution of the software and the documentation is allowed only in unmodified form of its current version and free of charge.

Data Protection Declaration

This web page records no (personal) data and stores no cookies in the web browser.

The web service is operated and provided by

Telekom Deutschland GmbH
Business Center
D-64306 Darmstadt
Germany
<‍hosting‍@‍telekom‍.‍de‍>
+49 800 5252033

The web service provider stores a session cookie in the web browser and records every visit of this web site with the following data in an access log on their server(s):

the (pseudonymised) IP address;
the date and time of the request;
the URL of the requested web page or file;
the Referer and User-Agent HTTP headers sent by the web browser;
the result (success or failure) of the request;
the amount of data received and sent.