[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

ALAS-2012-140 --- libproxy

ID: oval:org.secpod.oval:def:1601269Date: (C)2020-11-27   (M)2023-11-10
Class: PATCHFamily: unix




A buffer overflow flaw was found in the way libproxy handled the downloading of proxy auto-configuration files. A malicious server hosting a PAC file or a man-in-the-middle attacker could use this flaw to cause an application using libproxy to crash or, possibly, execute arbitrary code, if the proxy settings obtained by libproxy instructed the use of a PAC proxy configuration

Platform:
Amazon Linux AMI
Product:
libproxy
Reference:
ALAS-2012-140
CVE-2012-4505
CVE    1
CVE-2012-4505
CPE    5
cpe:/o:amazon:linux
cpe:/a:libproxy_project:libproxy
cpe:/a:libproxy_project:libproxy:0.3.0
cpe:/a:libproxy_project:libproxy:0.3.1
...

© SecPod Technologies