Lucene search
K

24 matches found

CVE
CVE
added 2013/03/08 6:0 p.m.83 views

CVE-2013-1762

CVE-2013-1762 affects stunnel 4.21–4.54 when NTLM authentication and CONNECT protocol negotiation are enabled. A mis-handled integer conversion can trigger a buffer overflow, allowing a remote attacker to execute arbitrary code via a crafted request to a proxy. Connected advisories consistently c...

6.6CVSS7.8AI score0.02932EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2013/03/05 12:0 a.m.31 views

FreeBSD : stunnel -- Remote Code Execution (c97219b6-843d-11e2-b131-000c299b62e1)

Michal Trojnara reports : 64-bit versions of stunnel with the following conditions : NTLM authentication enabled CONNECT protocol negotiation enabled Configured in SSL client mode An attacker that can either control the proxy server specified in the 'connect' option or execute MITM attacks on the...

6.6CVSS8.7AI score0.02932EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2013/03/03 12:0 a.m.42 views

stunnel -- Remote Code Execution

Michal Trojnara reports: 64-bit versions of stunnel with the following conditions: NTLM authentication enabled CONNECT protocol negotiation enabled Configured in SSL client mode An attacker that can either control the proxy server specified in the "connect" option or execute MITM attacks on the T...

6.6CVSS7.5AI score0.02932EPSS
Exploits0References1
securityvulns
securityvulns
added 2006/08/07 12:0 a.m.29 views

DConnect Daemon Multiple Vulnerabilities

Luigi Auriemma Application: DConnect Daemon http://www.dc.ds.pg.gda.pl Versions: = 0.7.0 and CVS = 30 Jul 2006 Platforms: Windows, nix, BSD and others Bugs: A listenthreadudp buffer-overflow B dcchat NULL pointer C various format string bugs privileges needed Exploitation: remote Date: 06 Aug 200...

0.5AI score
Exploits0
Rows per page
Query Builder