Format string vulnerability in the -a option (daemon mode) in Proxytunnel prior to 1.2.3 allows remote malicious users to execute arbitrary code via format string specifiers in an invalid proxy answer.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
proxytunnel proxytunnel 1.2_.0 |
||
proxytunnel proxytunnel 1.1.3 |
||
proxytunnel proxytunnel 1.2.2 |
||
proxytunnel proxytunnel 1.0.6 |