RSS   Vulnerabilities for 'Vidalia bundle'   RSS

2009-03-31
 
CVE-2007-6724

 

 
Vidalia bundle before 0.1.2.18, when running on Windows, installs Privoxy with a configuration file (config.txt or config) that contains an insecure enable-remote-http-toggle setting, which allows remote attackers to bypass intended access restrictions and modify configuration.

 
 
CVE-2007-6722

 

 
Vidalia bundle before 0.1.2.18, when running on Windows and Mac OS X, installs Privoxy with a configuration file (config.txt or config) that contains insecure (1) enable-remote-toggle and (2) enable-edit-actions settings, which allows remote attackers to bypass intended access restrictions and modify configuration.

 


Copyright 2024, cxsecurity.com

 

Back to Top