Back to search
CVE-2012-4505
Published: Nov 11, 2012
Modified: Aug 6, 2024
PUBLISHED
Description
Heap-based buffer overflow in the px_pac_reload function in lib/pac.c in libproxy 0.2.x and 0.3.x allows remote servers to have an unspecified impact via a crafted Content-Length size in an HTTP response header for a proxy.pac file request, a different vulnerability than CVE-2012-4504.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
openSUSE-SU-2012:1375
vendor-advisory
x_refsource_SUSE
51048
third-party-advisory
x_refsource_SECUNIA
RHSA-2012:1461
vendor-advisory
x_refsource_REDHAT
https://groups.google.com/forum/?fromgroups=#%21topic/libproxy/VxZ8No7mT0E
x_refsource_CONFIRM
USN-1629-1
vendor-advisory
x_refsource_UBUNTU
[oss-security] 20121012 libproxy PAC downloading buffer overflows
mailing-list
x_refsource_MLIST
[oss-security] 20121012 Re: libproxy PAC downloading buffer overflows
mailing-list
x_refsource_MLIST
DSA-2571
vendor-advisory
x_refsource_DEBIAN
51180
third-party-advisory
x_refsource_SECUNIA
51308
third-party-advisory
x_refsource_SECUNIA
55910
vdb-entry
x_refsource_BID
[oss-security] 20121016 Re: libproxy PAC downloading buffer overflows
mailing-list
x_refsource_MLIST
https://bugzilla.redhat.com/show_bug.cgi?id=864612
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now