Memory Corruption Flaw in Tinyproxy HTTP Proxy Affects Multiple Versions
CVE-2002-0847

Currently unrated

Key Information:

Vendor: Tinyproxy
Status: Tinyproxy
Vendor: CVE Published:; 12 August 2002

What is CVE-2002-0847?

The Tinyproxy HTTP Proxy, specifically in versions 1.5.0 and 1.4.3 and earlier, contains a memory corruption flaw that permits remote attackers to exploit a double-free condition. This vulnerability can lead to arbitrary code execution, putting systems that utilize Tinyproxy at severe risk. Attackers can manipulate the memory management of the application, potentially allowing for unauthorized actions and system compromises.

References

https://www.debian.org/security/2002/dsa-145

vendor-advisoryx_refsource_DEBIAN

http://www.iss.net/security_center/static/9079.php

vdb-entryx_refsource_XF

http://sourceforge.net/project/shownotes.php?release_id=8...

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 12, 2002
Vulnerability Reserved
Aug 9, 2002

CVE-2002-0847 Data

JSON