11 matches found
Ubuntu 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 : SNI Proxy vulnerability (USN-6148-1)
The remote Ubuntu 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 host has a package installed that is affected by a vulnerability as referenced in the USN-6148-1 advisory. It was discovered that SNI Proxy did not properly handle wildcard backend hosts. An attacker could possibly use this issue to caus...
Debian DSA-5413-1 : sniproxy - security update
The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dsa-5413 advisory. An issue has been found in sniproxy, a transparent TLS and HTTP layer 4 proxy with SNI support. Due to bad handling of wildcard backend hosts, a crafted HTTP or TLS packet...
[SECURITY] [DSA 5413-1] sniproxy security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5413-1 [email protected] https://www.debian.org/security/ Thorsten Alteholz May 26, 2023 https://www.debian.org/security/faq -...
Mageia: Security Advisory (MGASA-2023-0178)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated sniproxy packages fix security vulnerability
A buffer overflow vulnerability exists in the handling of wildcard backend hosts of SNIProxy. A specially crafted HTTP or TLS packet can lead to arbitrary code execution. An attacker could send a malicious packet to trigger this vulnerability. CVE-2023-25076...
CVE-2023-25076
creationtimestamp| type| source ---|---|--- 2023-03-30 18:32:54+00:00| seen| https://t.me/cibsecurity/61175 2026-06-23 17:37:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3moxwumd3pb2r...
CVE-2023-25076
A buffer overflow vulnerability exists in the handling of wildcard backend hosts of SNIProxy 0.6.0-2 and the master branch commit: 822bb80df9b7b345cc9eba55df74a07b498819ba. A specially crafted HTTP or TLS packet can lead to arbitrary code execution. An attacker could send a malicious packet to...
CVE-2023-25076
A buffer overflow vulnerability exists in the handling of wildcard backend hosts of SNIProxy 0.6.0-2 and the master branch commit: 822bb80df9b7b345cc9eba55df74a07b498819ba. A specially crafted HTTP or TLS packet can lead to arbitrary code execution. An attacker could send a malicious packet to...
CVE-2023-25076
A buffer overflow vulnerability exists in the handling of wildcard backend hosts of SNIProxy 0.6.0-2 and the master branch commit: 822bb80df9b7b345cc9eba55df74a07b498819ba. A specially crafted HTTP or TLS packet can lead to arbitrary code execution. An attacker could send a malicious packet to...
CVE-2023-25076
CVE-2023-25076 affects sniproxy: a buffer overflow in the handling of wildcard backend hosts can allow arbitrary code execution via crafted HTTP or TLS packets. Impact observed in SNIProxy 0.6.0-2 and the master branch. Exploitation details are not provided in the Initial description, but multipl...
SNIProxy wildcard backend hosts buffer overflow vulnerability
Talos Vulnerability Report TALOS-2023-1731 SNIProxy wildcard backend hosts buffer overflow vulnerability March 30, 2023 CVE Number CVE-2023-25076 SUMMARY A buffer overflow vulnerability exists in the handling of wildcard backend hosts of SNIProxy 0.6.0-2 and the master branch commit:...