CVE-2012-5580

Format string vulnerability in the printproxies function in bin/proxy.c in libproxy 0.3.1 might allow context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via format string specifiers in a proxy name, as demonstrated using the httpproxy environment...

CVE-2012-5580

CVE-2012-5580 affects libproxy 0.3.1. The vulnerability exists in print_proxies (bin/proxy.c) where a format string flaw in a proxy name allows context-dependent attackers to trigger a crash (and possibly code execution) via format string specifiers. Exploitation scenarios mentioned include the h...

openSUSE Security Update : Mozilla Suite (openSUSE-SU-2012:1412-1)

Mozilla Firefox, Thunderbird and XULRunner were updated to 16.0.2. Mozilla SeaMonkey was updated to 2.13.2. Tracker bug: bnc786522 A security issues was fixed : - MFSA 2012-90/CVE-2012-4194/CVE-2012-4195/CVE-2012-4196 bmo800666, bmo793121, bmo802557 Fixes for Location object issues The update als...

openSUSE Security Update : openconnect (openSUSE-SU-2013:1072-1)

This openconnect update to version 3.20 includes several security and bug fixes. - fix bnc767616 - fix for CVE-2012-3291 - make vpnc mandatory during build, following upstream changes - package documentation in a -doc package - Update to version 3.20 - Cope with non-keepalive HTTP response on...

openSUSE Security Update : libproxy / libproxy-plugins (openSUSE-SU-2012:1375-1)

This update of libproxy fixed a buffer overflow flaw. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-720. The text description of this plugin is C SUSE LLC...

GLSA-201404-02 : libproxy: User-assisted execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-201404-02 libproxy: User-assisted execution of arbitrary code A boundary error when processing the proxy.pac file could cause a stack-based buffer overflow. Impact : A man-in-the-middle attacker could provide a specially crafted...

libproxy: User-assisted execution of arbitrary code

Background libproxy is a library for automatic proxy configuration management. Description A boundary error when processing the proxy.pac file could cause a stack-based buffer overflow. Impact A man-in-the-middle attacker could provide a specially crafted proxy.pac file on a remote server, possib...

Amazon Linux AMI : libproxy (ALAS-2012-140)

A buffer overflow flaw was found in the way libproxy handled the downloading of proxy auto-configuration PAC files. A malicious server hosting a PAC file or a man-in-the-middle attacker could use this flaw to cause an application using libproxy to crash or, possibly, execute arbitrary code, if th...

Oracle Linux 6 : libproxy (ELSA-2012-1461)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2012-1461 advisory. 0.3.0-3 - Fix CVE-2012-4505 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not...

Oracle Linux 5 / 6 : firefox (ELSA-2013-0271)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2013-0271 advisory. firefox 17.0.3-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat ones 17.0.3-1 - Update to 17.0.3 ESR 17.0.2-4 - Add...

Fedora Update for libproxy FEDORA-2012-20092

Check for the Version of libproxy OpenVAS Vulnerability Test Fedora Update for libproxy FEDORA-2012-20092 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Fedora Update for libproxy FEDORA-2012-20092

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora 17 : libproxy-0.4.11-1.fc17 (2012-20092)

CVE-2012-5580 libproxy: format string flaw in bin/proxy Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

[SECURITY] Fedora 17 Update: libproxy-0.4.11-1.fc17

libproxy offers the following features: extremely small core footprint 35K no external dependencies within libproxy core libproxy plugins may have dependencies only 3 functions in the stable external API dynamic adjustment to changing network topology a standard way of dealing with proxy settings...

CentOS Update for libproxy CESA-2013:0271 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CentOS Update for libproxy CESA-2013:0271 centos6

Check for the Version of libproxy OpenVAS Vulnerability Test CentOS Update for libproxy CESA-2013:0271 centos6 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

devhelp, firefox, libproxy, xulrunner, yelp security update

CentOS Errata and Security Advisory CESA-2013:0271 Updated firefox packages that fix several security issues are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System CVS...

SuSE 11.2 Security Update : libproxy (SAT Patch Number 7092)

This update for libproxy fixes a heap-based buffer overflow that could have allowed remote servers to have an unspecified impact via a crafted Content-Length size in an HTTP response header for a proxy.pac file request. CVE-2012-4505 Additionally, it fixes parsing of the $noproxy environment...

Fedora 18 : libproxy-0.4.11-1.fc18 (2012-19879)

CVE-2012-5580 libproxy: format string flaw in bin/proxy Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

[SECURITY] Fedora 18 Update: libproxy-0.4.11-1.fc18

libproxy offers the following features: extremely small core footprint 35K no external dependencies within libproxy core libproxy plugins may have dependencies only 3 functions in the stable external API dynamic adjustment to changing network topology a standard way of dealing with proxy settings...