FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-23 17:01:17 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
50744596-368f-11d9-a9e7-0001020eed82	proxytunnel -- format string vulnerability A Gentoo Linux Security Advisory reports: Florian Schilhabel of the Gentoo Linux Security Audit project found a format string vulnerability in Proxytunnel. When the program is started in daemon mode (-a [port]), it improperly logs invalid proxy answers to syslog. A malicious remote server could send specially-crafted invalid answers to exploit the format string vulnerability, potentially allowing the execution of arbitrary code on the tunnelling host with the rights of the Proxytunnel process. Discovery 2004-11-01 Entry 2004-11-15 proxytunnel < 1.2.3 CVE-2004-0992 http://proxytunnel.sourceforge.net/news.html http://www.gentoo.org/security/en/glsa/glsa-200411-07.xml

VuXML ID

Description

50744596-368f-11d9-a9e7-0001020eed82

proxytunnel -- format string vulnerability

A Gentoo Linux Security Advisory reports:

Florian Schilhabel of the Gentoo Linux Security Audit project found a format string vulnerability in Proxytunnel. When the program is started in daemon mode (-a [port]), it improperly logs invalid proxy answers to syslog.

A malicious remote server could send specially-crafted invalid answers to exploit the format string vulnerability, potentially allowing the execution of arbitrary code on the tunnelling host with the rights of the Proxytunnel process.

Discovery 2004-11-01
Entry 2004-11-15
proxytunnel

< 1.2.3

CVE-2004-0992
http://proxytunnel.sourceforge.net/news.html
http://www.gentoo.org/security/en/glsa/glsa-200411-07.xml