CyberSec.Space Logo
Back to CVE Browser

CVE-2011-1843

MEDIUM
6.8
CVSS Severity Score
EPSS Score0.1340%
EPSS Percentile40.07th
PublishedMay 3, 2011
Last ModifiedApr 29, 2026

Vulnerability Description

Integer overflow in conf.c in Tinyproxy before 1.8.3 might allow remote attackers to bypass intended access restrictions in opportunistic circumstances via a TCP connection, related to improper handling of invalid port numbers.

Affected Platforms (CPE)

πŸ“¦
Banu

Tinyproxy

<= 1.8.2
πŸ“¦
Banu

Tinyproxy

= 1.5.0
πŸ“¦
Banu

Tinyproxy

= 1.5.0
πŸ“¦
Banu

Tinyproxy

= 1.5.0
πŸ“¦
Banu

Tinyproxy

= 1.5.0
πŸ“¦
Banu

Tinyproxy

= 1.5.0
πŸ“¦
Banu

Tinyproxy

= 1.5.0
πŸ“¦
Banu

Tinyproxy

= 1.5.0
πŸ“¦
Banu

Tinyproxy

= 1.5.0
πŸ“¦
Banu

Tinyproxy

= 1.5.0
πŸ“¦
Banu

Tinyproxy

= 1.5.0
πŸ“¦
Banu

Tinyproxy

= 1.5.0
πŸ“¦
Banu

Tinyproxy

= 1.5.0
πŸ“¦
Banu

Tinyproxy

= 1.5.0
πŸ“¦
Banu

Tinyproxy

= 1.5.0
πŸ“¦
Banu

Tinyproxy

= 1.5.0
πŸ“¦
Banu

Tinyproxy

= 1.5.0
πŸ“¦
Banu

Tinyproxy

= 1.5.1
πŸ“¦
Banu

Tinyproxy

= 1.5.1
πŸ“¦
Banu

Tinyproxy

= 1.5.1
πŸ“¦
Banu

Tinyproxy

= 1.5.1
πŸ“¦
Banu

Tinyproxy

= 1.5.1
πŸ“¦
Banu

Tinyproxy

= 1.5.1
πŸ“¦
Banu

Tinyproxy

= 1.5.1
πŸ“¦
Banu

Tinyproxy

= 1.5.1
πŸ“¦
Banu

Tinyproxy

= 1.5.1
πŸ“¦
Banu

Tinyproxy

= 1.5.1
πŸ“¦
Banu

Tinyproxy

= 1.5.1
πŸ“¦
Banu

Tinyproxy

= 1.5.2
πŸ“¦
Banu

Tinyproxy

= 1.5.2
πŸ“¦
Banu

Tinyproxy

= 1.5.2
πŸ“¦
Banu

Tinyproxy

= 1.5.3
πŸ“¦
Banu

Tinyproxy

= 1.5.3
πŸ“¦
Banu

Tinyproxy

= 1.6.0
πŸ“¦
Banu

Tinyproxy

= 1.6.0
πŸ“¦
Banu

Tinyproxy

= 1.6.0
πŸ“¦
Banu

Tinyproxy

= 1.6.0
πŸ“¦
Banu

Tinyproxy

= 1.6.0
πŸ“¦
Banu

Tinyproxy

= 1.6.0
πŸ“¦
Banu

Tinyproxy

= 1.6.0
πŸ“¦
Banu

Tinyproxy

= 1.6.0
πŸ“¦
Banu

Tinyproxy

= 1.6.0
πŸ“¦
Banu

Tinyproxy

= 1.6.1
πŸ“¦
Banu

Tinyproxy

= 1.6.2
πŸ“¦
Banu

Tinyproxy

= 1.6.3
πŸ“¦
Banu

Tinyproxy

= 1.6.4
πŸ“¦
Banu

Tinyproxy

= 1.6.5
πŸ“¦
Banu

Tinyproxy

= 1.7.0
πŸ“¦
Banu

Tinyproxy

= 1.7.1
πŸ“¦
Banu

Tinyproxy

= 1.8.0
πŸ“¦
Banu

Tinyproxy

= 1.8.1

References & Advisories

πŸ”— http://www.securityfocus.com/bid/47715
πŸ”— https://banu.com/bugzilla/show_bug.cgi?id=90
πŸ”— https://banu.com/cgit/tinyproxy/diff/?id=97b9984484299b2ce72f8f4fc3706dab8a3a8439
πŸ”— http://www.securityfocus.com/bid/47715
πŸ”— https://banu.com/bugzilla/show_bug.cgi?id=90
πŸ”— https://banu.com/cgit/tinyproxy/diff/?id=97b9984484299b2ce72f8f4fc3706dab8a3a8439

Related Vulnerabilities

CVE-2001-012910.0

Buffer overflow in Tinyproxy HTTP proxy 1.3.3 and earlier allows remote attackers to cause a denial of service and possibly execut...

CVE-2002-08477.5

tinyproxy HTTP proxy 1.5.0, 1.4.3, and earlier allows remote attackers to execute arbitrary code via memory that is freed twice (d...

CVE-2017-117475.5

main.c in Tinyproxy 1.8.4 and earlier creates a /run/tinyproxy/tinyproxy.pid file after dropping privileges to a non-root account,...

CVE-2012-35055.0

Tinyproxy 1.8.3 and earlier allows remote attackers to cause a denial of service (CPU and memory consumption) via (1) a large numb...