Back to CVE Browser

CVE-2019-14495

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.0180%

EPSS Percentile10.96th

PublishedAug 1, 2019

Last ModifiedNov 21, 2024

Vulnerability Description

webadmin.c in 3proxy before 0.8.13 has an out-of-bounds write in the admin interface.

Affected Platforms (CPE)

📦

3proxy

3proxy

< 0.8.13

References & Advisories

🔗 https://github.com/z3APA3A/3proxy/commit/3b67dc844789dc0f00e934270c7b349bcb547865

🔗 https://github.com/z3APA3A/3proxy/compare/0.8.12...0.8.13

🔗 https://github.com/z3APA3A/3proxy/releases/tag/0.8.13

🔗 https://github.com/z3APA3A/3proxy/commit/3b67dc844789dc0f00e934270c7b349bcb547865

🔗 https://github.com/z3APA3A/3proxy/compare/0.8.12...0.8.13

🔗 https://github.com/z3APA3A/3proxy/releases/tag/0.8.13

Related Vulnerabilities

CVE-2007-203110.0

Buffer overflow in the HTTP proxy service for 3proxy 0.5 to 0.5.3g, and 0.6b-devel before 20070413, might allow remote attackers t...

CVE-2006-69815.0

3proxy 0.5 to 0.5.2, when NT-encoded passwords are being used, allows remote attackers to cause a denial of service (blocked accou...

CVE-2006-69825.0

3proxy 0.5 to 0.5.2 does not offer NTLM authentication before basic authentication, which might cause browsers with incomplete RFC...

CVE-2007-56225.0

Double free vulnerability in the ftpprchild function in ftppr in 3proxy 0.5 through 0.5.3i allows remote attackers to cause a deni...