Vulnerabilities > Frox

DATE CVE VULNERABILITY TITLE RISK
2005-09-07 CVE-2005-2808 Security Bypass vulnerability in Frox 0.7.16/0.7.17
frox 0.7.16 and 0.7.17 does not properly parse certain Deny ACLs, which might allow attackers to bypass intended restrictions and access blocked hosts.
network
low complexity
frox
7.5
2005-09-07 CVE-2005-2807 Unspecified vulnerability in Frox 0.7.18
frox 0.7.18, when running setuid root, does not properly drop privileges when reading a configuration file, which allows local users to read portions of arbitrary files via the -f command line option.
local
low complexity
frox
7.2
2001-11-30 CVE-2001-0936 Buffer Overflow vulnerability in Frox FTP Cache Retrieval
Buffer overflow in Frox transparent FTP proxy 0.6.6 and earlier, with the local caching method selected, allows remote FTP servers to run arbitrary code via a long response to an MDTM request.
network
low complexity
frox
7.5