25 matches found
Important: squid
Issue Overview: Squid is a caching proxy for the Web. Prior to version 7.5, due to premature release of resource during expected lifetime and heap Use-After-Free bugs, Squid is vulnerable to Denial of Service when handling ICP traffic. This problem allows a remote attacker to perform a reliable a...
Tanium Client 安全漏洞
Tanium Client is a terminal proxy software developed by the American company Tanium. Tanium Client has a security vulnerability, which stems from a denial-of-service vulnerability...
OPENSUSE-SU-2025:15066-1 ldap-proxy-0.1.0~90-1.1 on GA media
These are all security issues fixed in the ldap-proxy-0.1.090-1.1 package on the GA media of openSUSE Tumbleweed...
GHSA-V7PC-74H8-XQ2H vulnerabilities
Vulnerabilities for packages: linkerd2-proxy, deno, shadowsocks-rust, ztunnel, ztunnel-fips...
GHSA-37WC-H8XC-5HC4 vulnerabilities
Vulnerabilities for packages: linkerd2-proxy, shadowsocks-rust, ztunnel-fips, ztunnel...
PT-2024-12430 · Apache · Apache Rocketmq
Name of the Vulnerable Software and Affected Versions: Apache RocketMQ affected versions not specified Description: The issue concerns a stealthy malware named perfctl, which targets millions of Linux servers. It exploits over 20,000 common misconfigurations and a critical vulnerability in Apache...
Squid security vulnerability
Squid is a suite of proxy server and web caching server software. The software provides features such as caching the World Wide Web, filtering traffic, and proxying the Internet. A security vulnerability exists in versions prior to Squid 6.4, which stems from an incorrect conversion between numer...
Acronis has unspecified vulnerabilities in several products
Acronis Cyber Protect is a network protection product. True Image is a well-known data backup and restore software. Acronis Agent is a proxy software. Several Acronis products have security vulnerabilities that can be exploited by attackers to cause local elevation of privileges...
CVE-2021-32826
Proxyee-Down is an open source proxy tool vulnerable to remote code execution when an attacker provides an extension script (e.g., via MiTM or hosting a malicious extension). The issue allows arbitrary commands to run on the system running Proxyee-Down. A PoC is referenced (GHSL-2021-053). As of ...
Tindy2013 Subconverter Security Vulnerability
Tindy2013 Subconverter is a C++ based proxy subscription software by the individual developer of Tindy2013. A security vulnerability exists in Tindy2013 Subconverter version 0.6.4, which can lead to request loops and denial of service...
Nord Security: Blind SSRF on debug.nordvpn.com due to misconfigured sentry instance
Summary: The debug subdomain uses Sentry for application monitoring and error tracking. This software comes with a feature known as source code scraping turned on by default which makes it is possible to make blind get requests from the server on which it is running. Steps To Reproduce: add detai...
ZNC code issue vulnerability (CNVD-2020-46827)
ZNC is a set of IRC proxies that allow users to log in to IRC servers from their workstations. A code issue vulnerability exists in versions of ZNC prior to 0.092, which can be exploited by remote attackers to cause an application to crash...
httpd, mod_ldap, mod_proxy_html, mod_session, mod_ssl security update
CentOS Errata and Security Advisory CESA-2015:1667 Updated httpd packages that fix two security issues are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which...
Google 'Sunsetting' Weak SHA-1 Crypto Algorithm
Google announced Friday it will begin the process of phasing out the obsolete SHA-1 cryptographic hash algorithm with the upcoming release of version 39 of the company’s Chrome browser in November. After the November release, Chrome will no longer fully trust sites whose certificate chains trust...
EType EServ 2.9x FTP Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6519/info EServ is a proxy software package distributed by EType. It is available for Microsoft Windows operating systems. It has been reported that a problem in EServ may cause the software to crash. When a remote user...
EType EServ 2.9x SMTP Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6521/info EServ is a proxy software package distributed by EType. It is available for Microsoft Windows operating systems. It has been reported that a problem in EServ may cause the software to crash. When a remote user...
EType EServ 1.9x NNTP Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6522/info EServ is a proxy software package distributed by EType. It is available for Microsoft Windows operating systems. It has been reported that a problem in EServ may cause the software to crash. When a remote user...
EType EServ 2.9x POP3 Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6520/info EServ is a proxy software package distributed by EType. It is available for Microsoft Windows operating systems. It has been reported that a problem in EServ may cause the software to crash. When a remote user...
[AppUse] Android Pentest Platform Unified Standalone Environment
AppSec Labs recently developed the AppUse Virtual Machine. This system is a unique, free, platform for mobile application security testing in the android environment, and it includes unique custom-made tools created by AppSec Labs. There is no need for installation of simulators and testing tools...
Special proxy software to bypass port easily break limit-vulnerability warning-the black bar safety net
It is well known, the network connection is divided into a Sock, HTTP, FTP, and other types, respectively suitable for different applications. However, sometimes the network is only open 8 0 port for HTTP web browsing. Faced with this situation, we must do nothing? Of course not, in SockOnline th...