CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Polipo through 1.1.1, when NDEBUG is omitted, allows denial of service via a reachable assertion during parsing of a malformed Range header. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...

7.5CVSS6.7AI score0.00681EPSS

Exploits1

RedhatCVE•added 2025/05/21 9:43 p.m.•7 views

CVE-2008-7191

Unspecified vulnerability in Polipo before 1.0.4 allows remote attackers to cause a denial of service crash via a long request URL...

5CVSS6.8AI score0.00474EPSS

Exploits0References1

RedhatCVE•added 2025/05/21 9:31 p.m.•5 views

CVE-2005-3163

Unspecified vulnerability in Polipo 0.9.8 and earlier allows attackers to read files outside of the web root...

5CVSS6.7AI score0.00343EPSS

Exploits0References1

Prion•added 2019/11/26 12:15 a.m.•14 views

Cross site request forgery (csrf)

Polipo before 1.0.4.1 suffers from a DoD vulnerability via specially-crafted HTTP POST / PUT request...

5CVSS6.9AI score0.13877EPSS

Exploits0References4Affected Software2

Cvelist•added 2019/11/25 11:53 p.m.•24 views

CVE-2011-3596

Polipo before 1.0.4.1 suffers from a DoD vulnerability via specially-crafted HTTP POST / PUT request...

7.4AI score0.13877EPSS

Exploits0References4

Debian CVE•added 2019/11/25 11:53 p.m.•19 views

CVE-2011-3596

Removed by vendor...

7.5CVSS7.5AI score0.13877EPSS

Exploits0

Exploit DB•added 2011/10/01 12:0 a.m.•21 views

Polipo 1.0.4.1 - POST/PUT HTTP Header Processing Denial of Service

source: https://www.securityfocus.com/bid/49908/info Polipo is prone to a denial-of-service vulnerability. Remote attackers can exploit this issue to cause the application to crash, denying service to legitimate users. Polipo 1.0.4.1 is vulnerable; other versions may also be affected...

7AI score

Exploits0

OSV•added 2009/12/24 4:30 p.m.•6 views

CVE-2009-4413

The httpClientDiscardBody function in client.c in Polipo 0.9.8, 0.9.12, 1.0.4, and possibly other versions, allows remote attackers to cause a denial of service crash via a request with a large Content-Length value, which triggers an integer overflow, a signed-to-unsigned conversion error with a...

6.5AI score

Exploits0References7

NVD•added 2009/09/09 5:30 p.m.•10 views

CVE-2008-7191

Unspecified vulnerability in Polipo before 1.0.4 allows remote attackers to cause a denial of service crash via a long request URL...

5CVSS6.5AI score0.00474EPSS

Exploits0References2

OSV•added 2009/09/09 5:30 p.m.•4 views

CVE-2008-7191

Unspecified vulnerability in Polipo before 1.0.4 allows remote attackers to cause a denial of service crash via a long request URL...

6.8AI score

Exploits0References2

OSV•added 2007/08/31 1:17 a.m.•5 views

CVE-2007-4626

Unspecified vulnerability in Polipo before 1.0.2 allows remote attackers to cause a denial of service daemon crash via certain network traffic associated with entities larger than 2 Gb...

6.8AI score

Exploits0References2

NVD•added 2007/08/31 1:17 a.m.•9 views

CVE-2007-4625

Polipo before 1.0.2 allows remote HTTP servers to cause a denial of service daemon crash by aborting the response to a POST request...

4.3CVSS6.5AI score0.00602EPSS

Exploits0References5

Prion•added 2007/08/31 1:17 a.m.•10 views

Code injection

Unspecified vulnerability in Polipo before 1.0.2 allows remote attackers to cause a denial of service daemon crash via certain network traffic associated with entities larger than 2 Gb...

5CVSS7.1AI score0.0063EPSS

Exploits0References2Affected Software1

NVD•added 2005/10/06 10:2 a.m.•8 views

CVE-2005-3163

Unspecified vulnerability in Polipo 0.9.8 and earlier allows attackers to read files outside of the web root...

5CVSS6.4AI score0.00343EPSS

Exploits0References2

Cvelist•added 2005/10/06 4:0 a.m.•14 views

CVE-2005-3163

Unspecified vulnerability in Polipo 0.9.8 and earlier allows attackers to read files outside of the web root...

6.3AI score0.00343EPSS

Exploits0References2