CVE-2011-1499

acl.c in Tinyproxy before 1.8.3, when an Allow configuration setting specifies a CIDR block, permits TCP connections from all IP addresses, which makes it easier for remote attackers to hide the origin of web traffic by leveraging the open HTTP proxy server.

CVSS v2.0 2.6 LOW

2.6^/10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:N/AC:H/Au:N/C:N/I:P/A:N

Exploitability : 4.9 / Impact : 2.9

Access Vector NETWORK

Access Complexity HIGH

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://openwall.com/lists/oss-security/2011/04/07/9	Mailing List Third Party Advisory
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=621493	Issue Tracking Patch
http://openwall.com/lists/oss-security/2011/04/08/3	Mailing List Third Party Advisory
https://banu.com/cgit/tinyproxy/diff/?id=e8426f6662dc467bd1d827100481b95d9a4a23e4	Broken Link
https://banu.com/bugzilla/show_bug.cgi?id=90	Broken Link
http://www.debian.org/security/2011/dsa-2222	Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=694658	Issue Tracking Patch
http://secunia.com/advisories/44274
https://exchange.xforce.ibmcloud.com/vulnerabilities/67256

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:banu:tinyproxy:1.7.1:::::::*
	cpe:2.3:a:banu:tinyproxy:1.7.0:::::::*
	cpe:2.3:a:banu:tinyproxy:1.6.0:a::::::
	cpe:2.3:a:banu:tinyproxy:1.6.0:pre1::::::
	cpe:2.3:a:banu:tinyproxy:1.5.0:::::::*
	cpe:2.3:a:banu:tinyproxy:1.5.0:pre1::::::
	cpe:2.3:a:banu:tinyproxy:1.5.0:rc4::::::
	cpe:2.3:a:banu:tinyproxy:1.5.0:rc5::::::
	cpe:2.3:a:banu:tinyproxy:1.5.1:pre1::::::
	cpe:2.3:a:banu:tinyproxy:1.5.1:pre2::::::
	cpe:2.3:a:banu:tinyproxy:1.5.1:rc3::::::
	cpe:2.3:a:banu:tinyproxy:1.6.0:pre4::::::
	cpe:2.3:a:banu:tinyproxy:1.6.0:rc2::::::
	cpe:2.3:a:banu:tinyproxy:1.5.1:pre5::::::
	cpe:2.3:a:banu:tinyproxy:1.5.0:rc8::::::
	cpe:2.3:a:banu:tinyproxy:1.5.0:pre6::::::
	cpe:2.3:a:banu:tinyproxy:1.5.0:pre5::::::
	cpe:2.3:a:banu:tinyproxy:1.5.3:::::::*
	cpe:2.3:a:banu:tinyproxy:1.5.0:rc9::::::
	cpe:2.3:a:banu:tinyproxy:1.5.0:rc1::::::
	cpe:2.3:a:banu:tinyproxy:1.6.4:::::::*
	cpe:2.3:a:banu:tinyproxy:1.8.0:::::::*
	cpe:2.3:a:banu:tinyproxy:1.5.3:rc1::::::
	cpe:2.3:a:banu:tinyproxy:1.5.1:pre6::::::
	cpe:2.3:a:banu:tinyproxy:1.5.1:rc4::::::
	cpe:2.3:a:banu:tinyproxy:1.6.2:::::::*
	cpe:2.3:a:banu:tinyproxy:1.6.0:rc3::::::
	cpe:2.3:a:banu:tinyproxy:1.6.3:::::::*
	cpe:2.3:a:banu:tinyproxy:1.8.1:::::::*
	cpe:2.3:a:banu:tinyproxy:1.6.0:rc1::::::
	cpe:2.3:a:banu:tinyproxy::::::::
	cpe:2.3:a:banu:tinyproxy:1.6.0:::::::*
	cpe:2.3:a:banu:tinyproxy:1.5.0:pre4::::::
	cpe:2.3:a:banu:tinyproxy:1.5.0:rc6::::::
	cpe:2.3:a:banu:tinyproxy:1.5.2:::::::*
	cpe:2.3:a:banu:tinyproxy:1.6.5:::::::*
	cpe:2.3:a:banu:tinyproxy:1.6.0:pre2::::::
	cpe:2.3:a:banu:tinyproxy:1.5.1:::::::*
	cpe:2.3:a:banu:tinyproxy:1.6.1:::::::*
	cpe:2.3:a:banu:tinyproxy:1.5.0:rc7::::::
	cpe:2.3:a:banu:tinyproxy:1.5.2:rc1::::::
	cpe:2.3:a:banu:tinyproxy:1.5.0:pre2::::::
	cpe:2.3:a:banu:tinyproxy:1.5.0:pre3::::::
	cpe:2.3:a:banu:tinyproxy:1.5.0:rc10::::::
	cpe:2.3:a:banu:tinyproxy:1.6.0:pre3::::::
	cpe:2.3:a:banu:tinyproxy:1.5.0:rc2::::::
	cpe:2.3:a:banu:tinyproxy:1.5.1:rc2::::::
	cpe:2.3:a:banu:tinyproxy:1.5.2:rc2::::::
	cpe:2.3:a:banu:tinyproxy:1.5.1:rc1::::::
	cpe:2.3:a:banu:tinyproxy:1.5.1:pre3::::::
	cpe:2.3:a:banu:tinyproxy:1.5.1:pre4::::::

Configuration 2 (hide)

cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*

Information

Published : 2011-04-29 15:55

Updated : 2017-08-16 18:34

NVD link : CVE-2011-1499

Mitre link : CVE-2011-1499

JSON object : View

CWE

CWE-16

Configuration

Products Affected

debian

debian_linux

banu

tinyproxy

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://openwall.com/lists/oss-security/2011/04/07/9", "name": "[oss-security] 20110407 CVE request: tinyproxy runs as an open proxy when attempting to restrict allowable IP ranges", "tags": ["Mailing List", "Third Party Advisory"], "refsource": "MLIST"}, {"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=621493", "name": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=621493", "tags": ["Issue Tracking", "Patch"], "refsource": "CONFIRM"}, {"url": "http://openwall.com/lists/oss-security/2011/04/08/3", "name": "[oss-security] 20110408 Re: CVE request: tinyproxy runs as an open proxy when attempting to restrict allowable IP ranges", "tags": ["Mailing List", "Third Party Advisory"], "refsource": "MLIST"}, {"url": "https://banu.com/cgit/tinyproxy/diff/?id=e8426f6662dc467bd1d827100481b95d9a4a23e4", "name": "https://banu.com/cgit/tinyproxy/diff/?id=e8426f6662dc467bd1d827100481b95d9a4a23e4", "tags": ["Broken Link"], "refsource": "CONFIRM"}, {"url": "https://banu.com/bugzilla/show_bug.cgi?id=90", "name": "https://banu.com/bugzilla/show_bug.cgi?id=90", "tags": ["Broken Link"], "refsource": "CONFIRM"}, {"url": "http://www.debian.org/security/2011/dsa-2222", "name": "DSA-2222", "tags": ["Third Party Advisory"], "refsource": "DEBIAN"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=694658", "name": "https://bugzilla.redhat.com/show_bug.cgi?id=694658", "tags": ["Issue Tracking", "Patch"], "refsource": "CONFIRM"}, {"url": "http://secunia.com/advisories/44274", "name": "44274", "tags": [], "refsource": "SECUNIA"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/67256", "name": "tinyproxy-aclc-sec-bypass(67256)", "tags": [], "refsource": "XF"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "acl.c in Tinyproxy before 1.8.3, when an Allow configuration setting specifies a CIDR block, permits TCP connections from all IP addresses, which makes it easier for remote attackers to hide the origin of web traffic by leveraging the open HTTP proxy server."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-16"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2011-1499", "ASSIGNER": "secalert@redhat.com"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 2.6, "accessVector": "NETWORK", "vectorString": "AV:N/AC:H/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "HIGH", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "severity": "LOW", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 4.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2011-04-29T22:55Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.7.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.6.0:a:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.6.0:pre1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.0:pre1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.0:rc4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.0:rc5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.1:pre1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.1:pre2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.1:rc3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.6.0:pre4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.6.0:rc2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.1:pre5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.0:rc8:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.0:pre6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.0:pre5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.0:rc9:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.0:rc1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.6.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.8.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.3:rc1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.1:pre6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.1:rc4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.6.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.6.0:rc3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.6.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.8.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.6.0:rc1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "1.8.2"}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.0:pre4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.0:rc6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.6.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.6.0:pre2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.6.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.0:rc7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.2:rc1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.0:pre2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.0:pre3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.0:rc10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.6.0:pre3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.0:rc2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.1:rc2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.2:rc2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.1:rc1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.1:pre3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:banu:tinyproxy:1.5.1:pre4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-08-17T01:34Z"}

2.6 /10