Vulnerability Description
FreeProxy before 3.92 Build 1626 allows malicious users to cause a denial of service (infinite loop) via a HOST: header with a hostname and port number that refers to the server itself.
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Freeproxy | Freeproxy | 3.92 |
References
- http://marc.info/?l=bugtraq&m=117086856902907&w=2Third Party Advisory
- http://marc.info/?l=full-disclosure&m=117085666921871&w=2Third Party Advisory
- http://osvdb.org/33116Broken Link
- http://secunia.com/advisories/24064Permissions Required
- http://www.handcraftedsoftware.org/index.php?page=3&mode=article&k=60PatchVendor Advisory
- http://www.securityfocus.com/bid/22445Third Party AdvisoryVDB Entry
- http://www.vupen.com/english/advisories/2007/0514Not Applicable
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32303
- http://marc.info/?l=bugtraq&m=117086856902907&w=2Third Party Advisory
- http://marc.info/?l=full-disclosure&m=117085666921871&w=2Third Party Advisory
- http://osvdb.org/33116Broken Link
- http://secunia.com/advisories/24064Permissions Required
- http://www.handcraftedsoftware.org/index.php?page=3&mode=article&k=60PatchVendor Advisory
- http://www.securityfocus.com/bid/22445Third Party AdvisoryVDB Entry
- http://www.vupen.com/english/advisories/2007/0514Not Applicable
FAQ
What is CVE-2007-0838?
CVE-2007-0838 is a vulnerability with a CVSS score of 5.0 (MEDIUM). FreeProxy before 3.92 Build 1626 allows malicious users to cause a denial of service (infinite loop) via a HOST: header with a hostname and port number that refers to the server itself.
How severe is CVE-2007-0838?
CVE-2007-0838 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-0838?
Check the references section above for vendor advisories and patch information. Affected products include: Freeproxy Freeproxy.