The client_host function in parsers.c in Privoxy prior to 3.0.24 allows remote malicious users to cause a denial of service (invalid read and crash) via an empty HTTP Host header.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
privoxy privoxy |