Format string vulnerability in the -a option (daemon mode) in Proxytunnel before 1.2.3 allows remote attackers to execute arbitrary code via format string specifiers in an invalid proxy answer.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Proxytunnel | Proxytunnel | 1.0.6 (including) | 1.0.6 (including) |
Proxytunnel | Proxytunnel | 1.1.3 (including) | 1.1.3 (including) |
Proxytunnel | Proxytunnel | 1.2.2 (including) | 1.2.2 (including) |
Proxytunnel | Proxytunnel | 1.2_.0 (including) | 1.2_.0 (including) |