Vulnerabilities > Banu

DATE CVE VULNERABILITY TITLE RISK
2011-05-03 CVE-2011-1843 Numeric Errors vulnerability in Banu Tinyproxy
Integer overflow in conf.c in Tinyproxy before 1.8.3 might allow remote attackers to bypass intended access restrictions in opportunistic circumstances via a TCP connection, related to improper handling of invalid port numbers.
network
banu CWE-189
6.8
2011-04-29 CVE-2011-1499 Configuration vulnerability in multiple products
acl.c in Tinyproxy before 1.8.3, when an Allow configuration setting specifies a CIDR block, permits TCP connections from all IP addresses, which makes it easier for remote attackers to hide the origin of web traffic by leveraging the open HTTP proxy server.
network
high complexity
banu debian CWE-16
2.6