What is the severity of CVE-2011-1843?

The severity of CVE-2011-1843 is categorized as medium due to its potential exploitation to bypass access restrictions.

How do I fix CVE-2011-1843?

To fix CVE-2011-1843, upgrade Tinyproxy to version 1.8.3 or later, where this vulnerability is patched.

Which versions of Tinyproxy are affected by CVE-2011-1843?

CVE-2011-1843 affects Tinyproxy versions prior to 1.8.3, specifically versions including and below 1.7.2.

Can CVE-2011-1843 be exploited remotely?

Yes, CVE-2011-1843 can be exploited remotely through a TCP connection that manipulates invalid port numbers.

What type of vulnerability is CVE-2011-1843?

CVE-2011-1843 is classified as an integer overflow vulnerability, leading to unintended behavior in access control.

Vulnerability/
CVE-2011-1843

medium

6.8

CWE

189 190

3/5/2011

6/8/2024

CVE-2011-1843: Integer Overflow

First published: Tue May 03 2011(Updated: )

Integer overflow in conf.c in Tinyproxy before 1.8.3 might allow remote attackers to bypass intended access restrictions in opportunistic circumstances via a TCP connection, related to improper handling of invalid port numbers.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Tinyproxy	=1.7.1
Tinyproxy	=1.6.0-pre4
Tinyproxy	=1.5.0-rc6
Tinyproxy	=1.6.0-rc2
Tinyproxy	=1.5.2
Tinyproxy	=1.6.5
Tinyproxy	=1.5.1-pre5
Tinyproxy	=1.5.0-rc8
Tinyproxy	=1.6.0-pre2
Tinyproxy	=1.6.0-a
Tinyproxy	=1.5.0-pre6
Tinyproxy	=1.5.0-pre5
Tinyproxy	=1.5.1-pre2
Tinyproxy	=1.5.3
Tinyproxy	=1.5.0-rc9
Tinyproxy	=1.5.1
Tinyproxy	=1.6.1
Tinyproxy	=1.5.1-rc3
Tinyproxy	=1.5.0-rc1
Tinyproxy	=1.6.4
Tinyproxy	=1.5.0-rc7
Tinyproxy	=1.5.2-rc1
Tinyproxy	=1.7.0
Tinyproxy	=1.5.0-pre2
Tinyproxy	=1.5.0-pre3
Tinyproxy	=1.5.0-rc10
Tinyproxy	=1.6.0-pre3
Tinyproxy	=1.8.0
Tinyproxy	=1.5.3-rc1
Tinyproxy	=1.5.1-pre6
Tinyproxy	=1.5.0
Tinyproxy	=1.6.0-pre1
Tinyproxy	=1.5.0-pre1
Tinyproxy	=1.5.1-rc4
Tinyproxy	=1.6.2
Tinyproxy	=1.5.1-pre1
Tinyproxy	=1.6.0-rc3
Tinyproxy	=1.5.0-rc2
Tinyproxy	=1.5.1-rc2
Tinyproxy	=1.5.2-rc2
Tinyproxy	=1.6.3
Tinyproxy	=1.5.1-rc1
Tinyproxy	=1.8.1
Tinyproxy	=1.5.0-rc5
Tinyproxy	=1.5.0-rc4
Tinyproxy	=1.5.1-pre3
Tinyproxy	=1.5.1-pre4
Tinyproxy	=1.6.0-rc1
Tinyproxy	<=1.8.2
Tinyproxy	=1.6.0
Tinyproxy	=1.5.0-pre4

Remedy

https://banu.com/bugzilla/show_bug.cgi?id=90

Remedy

https://banu.com/cgit/tinyproxy/diff/?id=97b9984484299b2ce72f8f4fc3706dab8a3a8439

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-1843?
The severity of CVE-2011-1843 is categorized as medium due to its potential exploitation to bypass access restrictions.
How do I fix CVE-2011-1843?
To fix CVE-2011-1843, upgrade Tinyproxy to version 1.8.3 or later, where this vulnerability is patched.
Which versions of Tinyproxy are affected by CVE-2011-1843?
CVE-2011-1843 affects Tinyproxy versions prior to 1.8.3, specifically versions including and below 1.7.2.
Can CVE-2011-1843 be exploited remotely?
Yes, CVE-2011-1843 can be exploited remotely through a TCP connection that manipulates invalid port numbers.
What type of vulnerability is CVE-2011-1843?
CVE-2011-1843 is classified as an integer overflow vulnerability, leading to unintended behavior in access control.

agent/type
agent/remedy
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/severity
agent/author
agent/weakness
agent/references
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/banu
canonical/tinyproxy
version/tinyproxy/1.7.1
version/tinyproxy/1.6.0-pre4
version/tinyproxy/1.5.0-rc6
version/tinyproxy/1.6.0-rc2
version/tinyproxy/1.5.2
version/tinyproxy/1.6.5
version/tinyproxy/1.5.1-pre5
version/tinyproxy/1.5.0-rc8
version/tinyproxy/1.6.0-pre2
version/tinyproxy/1.6.0-a
version/tinyproxy/1.5.0-pre6
version/tinyproxy/1.5.0-pre5
version/tinyproxy/1.5.1-pre2
version/tinyproxy/1.5.3
version/tinyproxy/1.5.0-rc9
version/tinyproxy/1.5.1
version/tinyproxy/1.6.1
version/tinyproxy/1.5.1-rc3
version/tinyproxy/1.5.0-rc1
version/tinyproxy/1.6.4
version/tinyproxy/1.5.0-rc7
version/tinyproxy/1.5.2-rc1
version/tinyproxy/1.7.0
version/tinyproxy/1.5.0-pre2
version/tinyproxy/1.5.0-pre3
version/tinyproxy/1.5.0-rc10
version/tinyproxy/1.6.0-pre3
version/tinyproxy/1.8.0
version/tinyproxy/1.5.3-rc1
version/tinyproxy/1.5.1-pre6
version/tinyproxy/1.5.0
version/tinyproxy/1.6.0-pre1
version/tinyproxy/1.5.0-pre1
version/tinyproxy/1.5.1-rc4
version/tinyproxy/1.6.2
version/tinyproxy/1.5.1-pre1
version/tinyproxy/1.6.0-rc3
version/tinyproxy/1.5.0-rc2
version/tinyproxy/1.5.1-rc2
version/tinyproxy/1.5.2-rc2
version/tinyproxy/1.6.3
version/tinyproxy/1.5.1-rc1
version/tinyproxy/1.8.1
version/tinyproxy/1.5.0-rc5
version/tinyproxy/1.5.0-rc4
version/tinyproxy/1.5.1-pre3
version/tinyproxy/1.5.1-pre4
version/tinyproxy/1.6.0-rc1
version/tinyproxy/1.8.2
version/tinyproxy/1.6.0
version/tinyproxy/1.5.0-pre4

Frequently Asked Questions

What is the severity of CVE-2011-1843?
The severity of CVE-2011-1843 is categorized as medium due to its potential exploitation to bypass access restrictions.
How do I fix CVE-2011-1843?
To fix CVE-2011-1843, upgrade Tinyproxy to version 1.8.3 or later, where this vulnerability is patched.
Which versions of Tinyproxy are affected by CVE-2011-1843?
CVE-2011-1843 affects Tinyproxy versions prior to 1.8.3, specifically versions including and below 1.7.2.
Can CVE-2011-1843 be exploited remotely?
Yes, CVE-2011-1843 can be exploited remotely through a TCP connection that manipulates invalid port numbers.
What type of vulnerability is CVE-2011-1843?
CVE-2011-1843 is classified as an integer overflow vulnerability, leading to unintended behavior in access control.

CVE-2011-1843: Integer Overflow

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-1843?

How do I fix CVE-2011-1843?

Which versions of Tinyproxy are affected by CVE-2011-1843?

Can CVE-2011-1843 be exploited remotely?

What type of vulnerability is CVE-2011-1843?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2011-1843?

How do I fix CVE-2011-1843?

Which versions of Tinyproxy are affected by CVE-2011-1843?

Can CVE-2011-1843 be exploited remotely?

What type of vulnerability is CVE-2011-1843?