CVE-2015-10088

Name of the Vulnerable Software and Affected Versions ayttm versions up to 0.5.0.89

Description A critical vulnerability was found in ayttm, affecting the function http connect in the library libproxy/proxy.c. The manipulation leads to a format string issue, which can be initiated remotely. The complexity of an attack is rather high, and the exploitability is difficult.

Recommendations To fix this issue, it is recommended to apply a patch named 40e04680018614a7d2b68566b261b061a0597046 for versions up to 0.5.0.89. As a temporary workaround, consider disabling the http connect function in the libproxy/proxy.c library until a patch is available.