Vidalia-project » Vidalia Bundle : Security Vulnerabilities, CVEs,
Vidalia bundle before 0.1.2.18, when running on Windows, installs Privoxy with a configuration file (config.txt or config) that contains an insecure enable-remote-http-toggle setting, which allows remote attackers to bypass intended access restrictions and modify configuration.
Max CVSS
5.0
EPSS Score
0.26%
Published
2009-03-31
Updated
2017-08-17
Vidalia bundle before 0.1.2.18, when running on Windows and Mac OS X, installs Privoxy with a configuration file (config.txt or config) that contains insecure (1) enable-remote-toggle and (2) enable-edit-actions settings, which allows remote attackers to bypass intended access restrictions and modify configuration.
Max CVSS
5.0
EPSS Score
0.26%
Published
2009-03-31
Updated
2017-08-17
2 vulnerabilities found