Hi, I found your report and I'd like to give a comment:
Karl Chen wrote...
> Below is a fix to a format string bug in tinyproxy. It does
> not appear exploitable in the current version of tinyproxy.
Not exploitable but configuring ViaProxyName to something format-string
like causes more or less funny entries in the logfile, e.g.
| ViaProxyName "tiny%s%s%sproxy"
->
| INFO Sep 16 08:50:20 [29720]: Setting "Via" proxy name to: tinySetting
"Via" proxy name to: tiny%s%s%sproxy(null)<E1><U+E7BF>proxy
Not a security problem IMHO since tinyproxy.conf can be modified by
administrator only, but still confusing. (To the maintainer:) Please
apply the patch when convenient, thank you.
Christoph
signature.asc
Description: Digital signature
