RSS   Vulnerabilities for 'FROX'   RSS

2005-09-07
 
CVE-2005-2808

 

 
frox 0.7.16 and 0.7.17 does not properly parse certain Deny ACLs, which might allow attackers to bypass intended restrictions and access blocked hosts.

 
 
CVE-2005-2807

 

 
frox 0.7.18, when running setuid root, does not properly drop privileges when reading a configuration file, which allows local users to read portions of arbitrary files via the -f command line option.

 
2001-11-30
 
CVE-2001-0936

 

 
Buffer overflow in Frox transparent FTP proxy 0.6.6 and earlier, with the local caching method selected, allows remote FTP servers to run arbitrary code via a long response to an MDTM request.

 


Copyright 2024, cxsecurity.com

 

Back to Top