CVE-2012-3505

EPSS 5.2%

tinyproxy - denial of service

Published: 10/9/2012Modified: 4/28/2026

Description

Tinyproxy 1.8.3 and earlier allows remote attackers to cause a denial of service (CPU and memory consumption) via (1) a large number of headers or (2) a large number of forged headers that trigger hash collisions predictably. bucket.

Affected packages (2)

Debian/tinyproxyfrom 0, < 1.8.3-3
Debian/tinyproxyfrom 0, < 1.8.2-1squeeze3

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-3505