MidnightBSD

Advisories for junkbuster

CVE-2005-1108 MEDIUM

The ij_untrusted_url function in JunkBuster 2.0.2-r2, with single-threaded mode enabled, allows remote attackers to overwrite the referrer field via a crafted HTTP request.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
junkbuster internet_junkbuster 2.0.2_r2
CVE-2005-1109 HIGH

The filtering of URLs in JunkBuster before 2.0.2-r3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via heap corruption.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
junkbuster internet_junkbuster 2.0.1
junkbuster internet_junkbuster 2.0.2
junkbuster internet_junkbuster 2.0.2_r2