FreeBSD Ports: Proxytunnel Network Vulnerability

Summary

The remote host is missing an update to the system as announced in the referenced advisory.

Solution

Update your system with the appropriate patches or software upgrades. http://proxytunnel.sourceforge.net/news.html http://www.gentoo.org/security/en/glsa/glsa-200411-07.xml http://www.vuxml.org/freebsd/50744596-368f-11d9-a9e7-0001020eed82.html

Insight

The following package is affected: proxytunnel CVE-2004-0992 Format string vulnerability in the -a option (daemon mode) in Proxytunnel before 1.2.3 allows remote attackers to execute arbitrary code via format string specifiers in an invalid proxy answer.

Severity

Classification

CVE CVE-2004-0992

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

FreeBSD Ports: bmon
FreeBSD Ports: clamav
FreeBSD Ports: apache
FreeBSD Ports: amaya
FreeBSD Ports: chromium

FreeBSD Ports: proxytunnel

Take action and discover your vulnerabilities