CVE Vulnerabilities

CVE-2005-1857

Published: Sep 02, 2005 | Modified: Nov 20, 2024
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu
UNTRIAGED

Format string vulnerability in simpleproxy before 3.4 allows remote malicious HTTP proxies to execute arbitrary code via format string specifiers in a reply.

Affected Software

Name Vendor Start Version End Version
Simpleproxy Simpleproxy 2.2b (including) 2.2b (including)
Simpleproxy Simpleproxy 3.0 (including) 3.0 (including)
Simpleproxy Simpleproxy 3.1 (including) 3.1 (including)
Simpleproxy Simpleproxy 3.2 (including) 3.2 (including)
Simpleproxy Ubuntu dapper *
Simpleproxy Ubuntu devel *
Simpleproxy Ubuntu edgy *
Simpleproxy Ubuntu feisty *

References