Back to search
CVE-2007-6724
Published: Mar 31, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
Vidalia bundle before 0.1.2.18, when running on Windows, installs Privoxy with a configuration file (config.txt or config) that contains an insecure enable-remote-http-toggle setting, which allows remote attackers to bypass intended access restrictions and modify configuration.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[or-talk] 20071031 Insecure Privoxy Configuration in Vidalia Bundles Prior to 0.1.2.18
mailing-list
x_refsource_MLIST
vidalia-enableremotehttptoggle-sec-bypass(50474)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now