CVE-2005-1857

Name of the Vulnerable Software and Affected Versions simpleproxy versions prior to 3.4

Description The issue concerns multiple vulnerabilities in the simpleproxy package of the Debian GNU/Linux operating system, which can be exploited remotely to compromise the confidentiality, integrity, and availability of protected information. A format string vulnerability allows remote malicious HTTP proxies to execute arbitrary code via format string specifiers in a reply.

Recommendations For versions prior to 3.4, update to version 3.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the simpleproxy package to minimize the risk of exploitation.