CVE-2012-5580
EPSS 0.80%Published: 10/27/2014Modified: 4/28/2026
Description
Format string vulnerability in the print_proxies function in bin/proxy.c in libproxy 0.3.1 might allow context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in a proxy name, as demonstrated using the http_proxy environment variable or a PAC file.
Affected packages (1)
- Debian/libproxyfrom 0, < 0.3.1-4