Vulnerabilities > 3Proxy > 3Proxy > 0.5.2

DATE CVE VULNERABILITY TITLE RISK
2007-10-29 CVE-2007-5622 Resource Management Errors vulnerability in 3Proxy
Double free vulnerability in the ftpprchild function in ftppr in 3proxy 0.5 through 0.5.3i allows remote attackers to cause a denial of service (daemon crash) via multiple OPEN commands to the FTP proxy.
network
low complexity
3proxy CWE-399
5.0
2007-02-08 CVE-2006-6982 Remote Security vulnerability in 3Proxy 0.5/0.5.1/0.5.2
3proxy 0.5 to 0.5.2 does not offer NTLM authentication before basic authentication, which might cause browsers with incomplete RFC2616/RFC2617 support to use basic cleartext authentication even if NTLM is available, which makes it easier for attackers to steal credentials.
network
low complexity
3proxy
5.0
2007-02-08 CVE-2006-6981 Denial-Of-Service vulnerability in 3Proxy 0.5/0.5.1/0.5.2
3proxy 0.5 to 0.5.2, when NT-encoded passwords are being used, allows remote attackers to cause a denial of service (blocked account) via unspecified vectors related to NTLM authentication, which causes a password hash to be overwritten.
network
low complexity
3proxy
5.0