Vulnerabilities > CVE-2007-1225 - Unspecified vulnerability in Grok Developments Netproxy 4.03

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

grok-developments

critical

exploit available

NVD

Published: 2007-03-02

Updated: 2017-10-11

Summary

The connection log file implementation in Grok Developments NetProxy 4.03 does not record requests that omit http:// in a URL, which might allow remote attackers to conduct unauthorized activities and avoid detection.

Vulnerable Configurations

Part	Description	Count
Application	Grok_Developments Grok Developments Netproxy 4.03	1

Exploit-Db

description	NetProxy. CVE-2007-1224,CVE-2007-1225. Remote exploit for windows platform
file	exploits/windows/remote/3381.pl
id	EDB-ID:3381
last seen	2016-01-31
modified	2007-02-27
platform	windows
port
published	2007-02-27
reporter	Craig Heffner
source	https://www.exploit-db.com/download/3381/
title	NetProxy <= 4.03 Web Filter Evasion / Bypass Logging Exploit
type	remote

Summary

Vulnerable Configurations

Exploit-Db

References