Lucene search

[email protected]CVE-2015-1031

HistoryFeb 10, 2015 - 7:59 p.m.

CVE-2015-1031

2015-02-1019:59:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2015-1031

privoxy

use-after-free vulnerabilities

remote attackers

nvd

security

coverity scan

6.9 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.007 Low

EPSS

Percentile

79.3%

JSON

Multiple use-after-free vulnerabilities in Privoxy before 3.0.22 allow remote attackers to have unspecified impact via vectors related to (1) the unmap function in list.c or (2) “two additional unconfirmed use-after-free complaints made by Coverity scan.” NOTE: some of these details are obtained from third party information.

CPENameOperatorVersion
privoxy:privoxyprivoxyle3.0.21

CPE	Name	Operator	Version
privoxy:privoxy	privoxy	le	3.0.21

References

secunia.com/advisories/62123

www.debian.org/security/2015/dsa-3133

www.openwall.com/lists/oss-security/2015/01/11/1

www.privoxy.org/announce.txt

6.9 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.007 Low

EPSS

Percentile

79.3%

JSON

Related for CVE-2015-1031

securityvulns2 nessus4 osv2 prion1 openvas3 debian2 debiancve1 cvelist1 ubuntucve1 freebsd1