Proxychains Ng Project

proxychains-ng_project

2 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Proxychains Ng

proxychains-ng

2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-34451 1Proxychains Ng Project 1Proxychains Ng Dec 31, 2025 Dec 18, 2025 6.9 MEDIUM· v4 7.8 HIGH· v3 N/A· v2 rofl0r/proxychains-ng versions up to and including 4.17 and prior to commit cc005b7 contain a stack-based buffer overflow vulnerability in the function proxy_from_string() located in src/libproxychains.c. When parsing cr...Show more rofl0r/proxychains-ng versions up to and including 4.17 and prior to commit cc005b7 contain a stack-based buffer overflow vulnerability in the function proxy_from_string() located in src/libproxychains.c. When parsing crafted proxy configuration entries containing overly long username or password fields, the application may write beyond the bounds of fixed-size stack buffers, leading to memory corruption or crashes. This vulnerability may allow denial of service and, under certain conditions, could be leveraged for further exploitation depending on the execution environment and applied mitigations.Show less
CVE-2015-3887 1Proxychains Ng Project 1Proxychains Ng May 13, 2026 Sep 21, 2017 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Untrusted search path vulnerability in ProxyChains-NG before 4.9 allows local users to gain privileges via a Trojan horse libproxychains4.so library in the current working directory, which is referenced in the LD_PRELOAD...Show more Untrusted search path vulnerability in ProxyChains-NG before 4.9 allows local users to gain privileges via a Trojan horse libproxychains4.so library in the current working directory, which is referenced in the LD_PRELOAD path.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2025-34451

1Proxychains Ng Project

1Proxychains Ng

Dec 31, 2025

Dec 18, 2025

6.9 MEDIUM· v4

7.8 HIGH· v3

N/A· v2

rofl0r/proxychains-ng versions up to and including 4.17 and prior to commit cc005b7 contain a stack-based buffer overflow vulnerability in the function proxy_from_string() located in src/libproxychains.c. When parsing crafted proxy configuration entries containing overly long username or password fields, the application may write beyond the bounds of fixed-size stack buffers, leading to memory corruption or crashes. This vulnerability may allow denial of service and, under certain conditions, could be leveraged for further exploitation depending on the execution environment and applied mitigations.Show less

CVE-2015-3887

1Proxychains Ng Project

1Proxychains Ng

May 13, 2026

Sep 21, 2017

N/A· v4

7.8 HIGH· v3

7.2 HIGH· v2

Untrusted search path vulnerability in ProxyChains-NG before 4.9 allows local users to gain privileges via a Trojan horse libproxychains4.so library in the current working directory, which is referenced in the LD_PRELOAD...Show more