3proxy 0.5.3g (Windows x86) - logurl() Remote Buffer Overflow (Perl)

3proxy 0.5.3g Windows x86 - logurl Remote Buffer Overflow Perl !/usr/bin/perl This module exploits a stack overflow in 3Proxy prior to 0.5.3h, and 0.6b-devel before 20070413. By sending a long host header in HTTP GET request to the default port of 3128, a remote attacker could overflow a buffer a...

3proxy 0.5.3g (Windows x86) - 'logurl()' Remote Buffer Overflow

!/usr/bin/perl This module exploits a stack overflow in 3Proxy prior to 0.5.3h, and 0.6b-devel before 20070413. By sending a long host header in HTTP GET request to the default port of 3128, a remote attacker could overflow a buffer and execute arbitrary code. Marcin Kozlowski based on vade79 PoC...

3proxy 0.5.3g logurl() Remote Buffer Overflow Exploit (win32) (pl)

Exploit for unknown platform in category remote exploits ================================================================== 3proxy 0.5.3g logurl Remote Buffer Overflow Exploit win32 pl ================================================================== !/usr/bin/perl This module exploits a stack...

GLSA-200711-13 : 3proxy: Denial of Service

The remote host is affected by the vulnerability described in GLSA-200711-13 3proxy: Denial of Service 3proxy contains a double free vulnerability in the ftpprchild function, which frees param-hostname and calls the parsehostname function, which in turn attempts to free param-hostname again. Impa...

3proxy: Denial of service

Background 3proxy is a really tiny cross-platform proxy servers set, including HTTP, HTTPS, FTP, SOCKS and POP3 support. Description 3proxy contains a double free vulnerability in the ftpprchild function, which frees param-hostname and calls the parsehostname function, which in turn attempts to...

Double free

Double free vulnerability in the ftpprchild function in ftppr in 3proxy 0.5 through 0.5.3i allows remote attackers to cause a denial of service daemon crash via multiple OPEN commands to the FTP proxy...

CVE-2007-5622

3proxy (versions 0.5 up to 0.5.3i) contains a double-free vulnerability in the ftpprchild() function. The flaw occurs when handling OPEN commands to the FTP proxy, where param->hostname is freed twice (once before parsehostname(), which frees it again). This can allow a remote attacker to caus...

CVE-2007-5622

Double free vulnerability in the ftpprchild function in ftppr in 3proxy 0.5 through 0.5.3i allows remote attackers to cause a denial of service daemon crash via multiple OPEN commands to the FTP proxy...

3Proxy FTP代理模块OPEN命令双重释放漏洞

BUGTRAQ ID: 26180 CVECAN ID: CVE-2007-5622 3Proxy是一款小型的代理软件。 3Proxy在处理连接时存在漏洞，远程攻击者可能利用此漏洞控制服务器。 3Proxy的ftpprchild函数中存在双重释放漏洞： ... if !strncasecmpchar buf, "OPEN ", 5 ifparam-hostname myfreeparam-hostname; --first free ifparsehostnamechar buf+5, param, 21RETURN803; the parsehostname will free...

3proxy double free vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 3proxy double free vulnerability Security Advisory Advisory: ADLAB-07006 3proxy double free vulnerability Class: Design Error DATE:10/22/2007 CVEID:CVE-2007-5622 Vulnerable: 3proxy =0.5.3i Vendor: http://www.3proxy.ru/ I.Synopsis A vulnerability has...

3proxy 0.5.3j released (bugfix)

3proxy http://3proxy.ru/ is multi-platform Windows, Linux, Unix multi-protocol proxy server with abilities to mange traffic flows and bandwidths, convert requests between different proxy types, authenticate, authorize, control, limit and account users access and more. 3proxy 0.5.3j version was...

3proxy double free() security vulnerability

Double free on FTP proxy OPEN request handling...

3proxy 0.5.3g proxy.c logurl() Remote Buffer Overflow Exploit (linux)

No description provided by source. / 3proxyv0.5.3g: linux remote buffer overflow exploit. by: vade79/v9 [email protected] fakehalo/realhalo compile: gcc x3proxy.c -o...

30 3proxy 0.5.3g proxy.c logurl() Remote Buffer Overflow Exploit (win32)

No description provided by source. / 3proxyv0.5.3g: win32 service remote buffer overflow exploit. by: vade79/v9 [email protected] fakehalo/realhalo compile: &...

3proxy 0.5.3g proxy.c logurl() Remote Overflow Exploit (exec-shield)

No description provided by source. / Fedora Core 5,6 exec-shield based 3proxy HTTP Proxy 3proxy-0.5.3g.tgz remote overflow root exploit reverse connect-back method by Xpl017Elz Advanced exploitation in exec-shield Fedora Core case study URL:...

3proxy-overflow.txt

/ Fedora Core 5,6 exec-shield based 3proxy HTTP Proxy 3proxy-0.5.3g.tgz remote overflow root exploit reverse connect-back method by Xpl017Elz Advanced exploitation in exec-shield Fedora Core case study URL: http://x82.inetcop.org/h0me/papers/FCexploit/FCexploit.txt Reference:...

3proxy 0.5.3g - exec-shield proxy.c logurl() Remote Overflow

3proxy 0.5.3g - exec-shield proxy.c logurl Remote Overflow / Fedora Core 5,6 exec-shield based 3proxy HTTP Proxy 3proxy-0.5.3g.tgz remote overflow root exploit reverse connect-back method by Xpl017Elz Advanced exploitation in exec-shield Fedora Core case study URL:...

3proxy 0.5.3g - exec-shield 'proxy.c logurl()' Remote Overflow

/ Fedora Core 5,6 exec-shield based 3proxy HTTP Proxy 3proxy-0.5.3g.tgz remote overflow root exploit reverse connect-back method by Xpl017Elz Advanced exploitation in exec-shield Fedora Core case study URL: http://x82.inetcop.org/h0me/papers/FCexploit/FCexploit.txt Reference:...

3proxy 0.5.3g proxy.c logurl() Remote Overflow Exploit (exec-shield)

Exploit for linux platform in category remote exploits ==================================================================== 3proxy 0.5.3g proxy.c logurl Remote Overflow Exploit exec-shield ==================================================================== / Fedora Core 5,6 exec-shield based...

3proxy 0.5.3g proxy.c logurl() Remote Buffer Overflow Exploit (win32)

Exploit for unknown platform in category remote exploits ===================================================================== 3proxy 0.5.3g proxy.c logurl Remote Buffer Overflow Exploit win32 ===================================================================== / 3proxyv0.5.3g: win32 service...