CVE Vulnerabilities

CVE-2004-0992

Published: Mar 01, 2005 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Format string vulnerability in the -a option (daemon mode) in Proxytunnel before 1.2.3 allows remote attackers to execute arbitrary code via format string specifiers in an invalid proxy answer.

Affected Software

Name Vendor Start Version End Version
Proxytunnel Proxytunnel 1.0.6 1.0.6
Proxytunnel Proxytunnel 1.1.3 1.1.3
Proxytunnel Proxytunnel 1.2.2 1.2.2
Proxytunnel Proxytunnel 1.2_.0 1.2_.0

References