CVE-2013-2503
EPSS 3.5%發布日:2013/3/11修改日:2026/4/28
描述
Privoxy before 3.0.21 does not properly handle Proxy-Authenticate and Proxy-Authorization headers in the client-server data stream, which makes it easier for remote HTTP servers to spoof the intended proxy service via a 407 (aka Proxy Authentication Required) HTTP status code.
受影響套件(1)
- Debian/privoxyfrom 0, < 3.0.21-1