Vulnerabilities > CVE-2011-1843 - Numeric Errors vulnerability in Banu Tinyproxy
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Integer overflow in conf.c in Tinyproxy before 1.8.3 might allow remote attackers to bypass intended access restrictions in opportunistic circumstances via a TCP connection, related to improper handling of invalid port numbers.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
Nessus
NASL family Fedora Local Security Checks NASL id FEDORA_2013-16225.NASL description - Update to upstream 1.83 - switch to using systemd macros in rpm - update to a PIE hardened build - update to use systemd Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. last seen 2020-03-17 modified 2013-09-22 plugin id 70043 published 2013-09-22 reporter This script is Copyright (C) 2013-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/70043 title Fedora 19 : tinyproxy-1.8.3-1.fc19 (2013-16225) NASL family Fedora Local Security Checks NASL id FEDORA_2013-16165.NASL description - Update to upstream 1.83 - switch to using systemd macros in rpm - update to a PIE hardened build - update to use systemd Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. last seen 2020-03-17 modified 2013-09-23 plugin id 70052 published 2013-09-23 reporter This script is Copyright (C) 2013-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/70052 title Fedora 20 : tinyproxy-1.8.3-1.fc20 (2013-16165)