Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Privoxy before 3.0.21 does not properly handle Proxy-Authenticate and Proxy-Authorization headers in the client-server data stream, which makes it easier for remote HTTP servers to spoof the intended proxy service via a 407 (aka Proxy Authentication Required) HTTP status code.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Privoxy 安全漏洞
Vulnerability Description
Privoxy是Privoxy团队开发的一款带过滤功能的代理服务器,它主要针对HTTP、HTTPS协议,并提供隐私保护、对网页内容进行过滤、管理cookies和拦阻各种广告等功能。 Privoxy 3.0.21之前版本中存在漏洞,该漏洞源于程序没有正确处理客户-服务器数据流中的Proxy-Authenticate和Proxy-Authorization头。通过407(又名Proxy Authentication Required)HTTP状态代码,远程HTTP服务器上的攻击者可利用该漏洞伪造预期的代理服务
CVSS Information
N/A
Vulnerability Type
N/A