17 matches found
EUVD-2016-3071
Malware in sbrugna...
SUSE CVE-2015-1380
jcc.c in Privoxy before 3.0.23 allows remote attackers to cause a denial of service abort via a crafted chunk-encoded body...
CVE-2016-1982
The removechunkedtransfercoding function in filters.c in Privoxy before 3.0.24 allows remote attackers to cause a denial of service invalid read and crash via crafted chunk-encoded content...
CVE-2016-1982
The removechunkedtransfercoding function in filters.c in Privoxy before 3.0.24 allows remote attackers to cause a denial of service invalid read and crash via crafted chunk-encoded content...
Design/Logic Flaw
The removechunkedtransfercoding function in filters.c in Privoxy before 3.0.24 allows remote attackers to cause a denial of service invalid read and crash via crafted chunk-encoded content...
CVE-2016-1982
The removechunkedtransfercoding function in filters.c in Privoxy before 3.0.24 allows remote attackers to cause a denial of service invalid read and crash via crafted chunk-encoded content...
CVE-2016-1982
Affected software / component: Privoxy (filters.c, remove_chunked_transfer_coding). Vulnerability: Remote attackers can trigger a denial of service (invalid read and crash) by sending crafted chunk-encoded content. This impacts Privoxy versions before 3.0.24. Impact: Denial of Service via crafted...
DLA-398-1 privoxy - security update
Bulletin has no description...
privoxy -- multiple vulnerabilities
Privoxy Developers reports: Prevent invalid reads in case of corrupt chunk-encoded content. CVE-2016-1982. Bug discovered with afl-fuzz and AddressSanitizer. Remove empty Host headers in client requests. Previously they would result in invalid reads. CVE-2016-1983. Bug discovered with afl-fuzz an...
openSUSE Security Update : privoxy (openSUSE-2015-115)
privoxy was updated to version 3.0.23 to fix three security issues. These security issues were fixed : - Fixed a DoS issue in case of client requests with incorrect chunk-encoded body. When compiled with assertions enabled the default they could previously cause Privoxy to abort CVE-2015-1380. -...
DEBIAN-CVE-2015-1380
jcc.c in Privoxy before 3.0.23 allows remote attackers to cause a denial of service abort via a crafted chunk-encoded body...
CVE-2015-1380
jcc.c in Privoxy before 3.0.23 allows remote attackers to cause a denial of service abort via a crafted chunk-encoded body...
UBUNTU-CVE-2015-1380
jcc.c in Privoxy before 3.0.23 allows remote attackers to cause a denial of service abort via a crafted chunk-encoded body...
security flaw
Apache 1.3 through 1.3.24, and Apache 2.0 through 2.0.36, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a chunk-encoded HTTP request that causes Apache to use an incorrect size...
Apache web servers fail to handle chunks with a negative size
Overview There is a remotely exploitable vulnerability in the way that Apache web servers or other web servers based on their source code handle data encoded in chunks. This vulnerability is present by default in configurations of Apache web server versions 1.2.2 and above, 1.3 through 1.3.24, an...
PT-2002-1447 · Apache · Apache +1
Name of the Vulnerable Software and Affected Versions: Apache versions 1.3 through 1.3.24 Apache versions 2.0 through 2.0.36 Description: The issue allows remote attackers to cause a denial of service and possibly execute arbitrary code via a chunk-encoded HTTP request that causes the software to...
Buffer overflow in Microsoft IIS HTR
Buffer overflow on chunk-encoded POST request...