1144 matches found
DSA-713-1 junkbuster - several
Bulletin has no description...
[ GLSA 200504-11 ] JunkBuster: Multiple vulnerabilities
Gentoo Linux Security Advisory GLSA 200504-11 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...
JunkBuster: Multiple vulnerabilities
Background JunkBuster is a filtering HTTP proxy, designed to enhance privacy and remove unwanted content. Description James Ranson reported a vulnerability when JunkBuster is configured to run in single-threaded mode, an attacker can modify the referrer setting by getting a victim to request a...
HTTP Proxy CONNECT Loop DoS
The proxy allows the users to perform repeated CONNECT requests to itself. This allow anybody to saturate the proxy CPU, memory or file descriptors. Note that if the proxy limits the number of connections from a single IP e.g. acl maxconn with Squid, it is protected against saturation and you may...
CVE-2004-1484
The CVE-2004-1484 issue affects socat (1.4.0.3 and earlier). It is a format string vulnerability in the _msg function in error.c that can be triggered when socat is used as an HTTP proxy client with the -ly option, enabling remote attackers (or local users) to execute arbitrary code via format st...
CVE-2004-1484
Format string vulnerability in the msg function in error.c in socat 1.4.0.3 and earlier, when used as an HTTP proxy client and run with the -ly option, allows remote attackers or local users to execute arbitrary code via format string specifiers in a syslog message...
Squid HTTP cache proxy oversized reply headers DoS
No description provided...
DEBIAN-CVE-2004-1484
Format string vulnerability in the msg function in error.c in socat 1.4.0.3 and earlier, when used as an HTTP proxy client and run with the -ly option, allows remote attackers or local users to execute arbitrary code via format string specifiers in a syslog message...
CVE-2004-1484
Format string vulnerability in the msg function in error.c in socat 1.4.0.3 and earlier, when used as an HTTP proxy client and run with the -ly option, allows remote attackers or local users to execute arbitrary code via format string specifiers in a syslog message...
CVE-2004-1484
Format string vulnerability in the msg function in error.c in socat 1.4.0.3 and earlier, when used as an HTTP proxy client and run with the -ly option, allows remote attackers or local users to execute arbitrary code via format string specifiers in a syslog message...
Hydra: HTTP proxy
This plugin runs Hydra to find HTTP proxy accounts and passwords by brute force. To use this plugin, enter the 'Logins file' and the 'Passwords file' under the 'Hydra NASL wrappers options' advanced settings block. TRUSTED...
HTTP Proxy (Server-facing) Detection
Binary data 1734.prm...
RHEL 2.1 : gaim (RHSA-2004:045)
Updated Gaim packages that fix a pair of security vulnerabilities are now available. Gaim is an instant messenger client that can handle multiple protocols. Stefan Esser audited the Gaim source code and found a number of bugs that have security implications. Many of these bugs do not affect the...
Wingate unauthorized access
wingate-internal virtual deirectory of HTTP proxy server allows to download any file located on server...
CVE-2003-0807
CVE-2003-0807 : A denial-of-service vulnerability in Microsoft Windows where the COM Internet Services (CIS) and RPC over HTTP Proxy components can be overwhelmed by a crafted forwarded response, causing the backend to stop accepting requests. Related connected documents (MS04-012) identify this ...
TrendMicro Interscan VirusWall directory traversal
Directory traversal in HTTP proxy service...
CVE-2004-0006
Multiple buffer overflows in Gaim 0.75 and earlier, and Ultramagnetic before 0.81, allow remote attackers to cause a denial of service and possibly execute arbitrary code via 1 cookies in a Yahoo web connection, 2 a long name parameter in the Yahoo login web page, 3 a long value parameter in the...
[SECURITY] [DSA 434-1] New gaim packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 434-1 [email protected] http://www.debian.org/security/ Martin Schulze February 5th, 2004 http://www.debian.org/security/faq -...
CVE-2003-0803
Nokia Electronic Documentation NED 5.0 allows remote attackers to use NED as an open HTTP proxy via a URL in the location parameter, which NED accesses and returns to the user...
CVE-2003-0803
Nokia Electronic Documentation NED 5.0 allows remote attackers to use NED as an open HTTP proxy via a URL in the location parameter, which NED accesses and returns to the user...