Format string vulnerability in the my_xlog function in lib.c for Oops! Proxy Server 1.5.23 and previous versions, as called by the auth functions in the passwd_mysql and passwd_pgsql modules, may allow malicious users to execute arbitrary code via a URL.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
igor khasilev oops proxy server 1.4.22 |
||
igor khasilev oops proxy server 1.5.19 |
||
igor khasilev oops proxy server 1.5.53 |
||
gentoo linux |