CNNVD-202512-3344 Information
CNNVD ID
CNNVD-202512-3344
Related CVE
- CNNVD Published: 2025-12-18
Description (Chinese)
proxychains-ng是rofl0r个人开发者的一个预加载程序。 proxychains-ng 4.17及之前版本和cc005b7之前版本存在安全漏洞,该漏洞源于proxy_from_string函数存在栈缓冲区溢出,可能导致内存损坏或崩溃。
Description (English)
Proxychains-ng is a preloader of rofl0r personal developers. There is a security loophole in proxychains-ng 4.17 and previous versions and precc005b7, which stems from the spilling out of the porxy from string function, which could lead to memory damage or collapse.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
个人开发者
Published
2025-12-18
Last Modified
2026-02-24
References
https://github.com/ https://github.com/marlinkcyber/advisories/blob/main/advisories/MCSAID-2025-008-proxychains-ng-stack-buffer-overflow-proxy_from_string.md https://github.com/rofl0r/proxychains-ng/issues/606 https://www.vulncheck.com/advisories/rofl0r-proxychains-ng-stack-based-buffer-overflow
Patch
https://github.com/httpsgithu/proxychains-ng/commit/cc005b7
Share on: