CVE-2004-0992 Information

Description

Format string vulnerability in the -a option (daemon mode) in Proxytunnel before 1.2.3 allows remote attackers to execute arbitrary code via format string specifiers in an invalid proxy answer.

Reference

http://proxytunnel.sourceforge.net/news.html http://www.gentoo.org/security/en/glsa/glsa-200411-07.xml http://www.securityfocus.com/bid/11592 https://exchange.xforce.ibmcloud.com/vulnerabilities/17945