CVE-2012-3505

EPSS 5.2%

tinyproxy - denial of service

發布日:2012/10/9修改日:2026/4/28

描述

Tinyproxy 1.8.3 and earlier allows remote attackers to cause a denial of service (CPU and memory consumption) via (1) a large number of headers or (2) a large number of forged headers that trigger hash collisions predictably. bucket.

受影響套件(2)

Debian/tinyproxyfrom 0, < 1.8.3-3
Debian/tinyproxyfrom 0, < 1.8.2-1squeeze3

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-3505