CVE-2019-14495
- EPSS 0.54%
- Published 01.08.2019 17:15:13
- Last modified 21.11.2024 04:26:51
webadmin.c in 3proxy before 0.8.13 has an out-of-bounds write in the admin interface.
- EPSS 1.62%
- Published 29.10.2007 21:46:00
- Last modified 09.04.2025 00:30:58
Double free vulnerability in the ftpprchild function in ftppr in 3proxy 0.5 through 0.5.3i allows remote attackers to cause a denial of service (daemon crash) via multiple OPEN commands to the FTP proxy.
- EPSS 48.14%
- Published 16.04.2007 21:19:00
- Last modified 09.04.2025 00:30:58
Buffer overflow in the HTTP proxy service for 3proxy 0.5 to 0.5.3g, and 0.6b-devel before 20070413, might allow remote attackers to execute arbitrary code via crafted transparent requests.
- EPSS 1.19%
- Published 08.02.2007 18:28:00
- Last modified 09.04.2025 00:30:58
3proxy 0.5 to 0.5.2, when NT-encoded passwords are being used, allows remote attackers to cause a denial of service (blocked account) via unspecified vectors related to NTLM authentication, which causes a password hash to be overwritten.
- EPSS 0.37%
- Published 08.02.2007 18:28:00
- Last modified 09.04.2025 00:30:58
3proxy 0.5 to 0.5.2 does not offer NTLM authentication before basic authentication, which might cause browsers with incomplete RFC2616/RFC2617 support to use basic cleartext authentication even if NTLM is available, which makes it easier for attacker...