WinProxy < 6.1a HTTP Proxy Multiple Vulnerabilities

This script is Copyright (C) 2006-2011 Tenable Network Security, Inc.

Synopsis :

The remote web proxy server is affected by denial of service and
buffer overflow vulnerabilities.

Description :

The remote host is running WinProxy, a proxy server for Windows.

The installed version of WinProxy's HTTP proxy fails to handle long
requests as well as requests with long Host headers. An attacker may
be able to exploit these issues to crash the proxy or even execute
arbitrary code on the affected host.

See also :

Solution :

Upgrade to WinProxy version 6.1a or later.

Risk factor :

High / CVSS Base Score : 7.5
CVSS Temporal Score : 6.2
Public Exploit Available : true

Family: Firewalls

Nessus Plugin ID: 20391 ()

Bugtraq ID: 16147

CVE ID: CVE-2005-3187