CyberSec.Space Logo
CVEブラウザに戻る

CVE-2007-2031

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0330%
EPSS Percentile26.86th
Published2007年4月16日
Last Modified2026年4月23日

Vulnerability Description

Buffer overflow in the HTTP proxy service for 3proxy 0.5 to 0.5.3g, and 0.6b-devel before 20070413, might allow remote attackers to execute arbitrary code via crafted transparent requests.

Affected Platforms (CPE)

📦
3proxy

3proxy

<= 0.5.3g

References & Advisories

🔗 http://3proxy.ru/0.5.3h/Changelog.txt
🔗 http://secunia.com/advisories/24961
🔗 http://secunia.com/advisories/25001
🔗 http://security.gentoo.org/glsa/glsa-200704-17.xml
🔗 http://www.securityfocus.com/archive/1/466650/100/100/threaded
🔗 http://www.securityfocus.com/bid/23545
🔗 http://www.vupen.com/english/advisories/2007/1442
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/33841

関連する脆弱性情報

CVE-2019-144959.8

webadmin.c in 3proxy before 0.8.13 has an out-of-bounds write in the admin interface.

CVE-2006-69815.0

3proxy 0.5 to 0.5.2, when NT-encoded passwords are being used, allows remote attackers to cause a denial of service (blocked accou...

CVE-2006-69825.0

3proxy 0.5 to 0.5.2 does not offer NTLM authentication before basic authentication, which might cause browsers with incomplete RFC...

CVE-2007-56225.0

Double free vulnerability in the ftpprchild function in ftppr in 3proxy 0.5 through 0.5.3i allows remote attackers to cause a deni...