CVE-2007-5622
3proxy (versions 0.5 up to 0.5.3i) contains a double-free vulnerability in the ftpprchild() function. The flaw occurs when handling OPEN commands to the FTP proxy, where param->hostname is freed twice (once before parsehostname(), which frees it again). This can allow a remote attacker to caus...