PT-1998-1217 · Libsocks5+1 · Libsocks5+1

Published

1998-07-10

Updated

2016-10-18

CVE-1999-1435

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Socks 5 (socks5) version 1.0r5

Description The issue is related to a buffer overflow in the libsocks5 library, which can be exploited by local users to gain privileges. This is achieved through the use of long environmental variables.

Recommendations For Socks 5 (socks5) version 1.0r5, consider updating to a newer version that addresses this issue, as using long environmental variables can lead to privilege escalation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-1999-1435

Affected Products

Socks 5

Libsocks5

PT-1998-1217 · Libsocks5+1 · Libsocks5+1

CVE-1999-1435

Related Identifiers

Affected Products

References · 3