{"id":"CVE-2005-1857","details":"Format string vulnerability in simpleproxy before 3.4 allows remote malicious HTTP proxies to execute arbitrary code via format string specifiers in a reply.","modified":"2026-04-10T03:37:08.795038Z","published":"2005-09-02T22:03:00Z","references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/16567/"},{"type":"ADVISORY","url":"http://www.debian.org/security/2005/dsa-786"},{"type":"FIX","url":"http://sourceforge.net/project/shownotes.php?group_id=604&release_id=351847"},{"type":"FIX","url":"http://www.debian.org/security/2005/dsa-786"},{"type":"FIX","url":"http://www.securityfocus.com/bid/14666"},{"type":"WEB","url":"http://www.kb.cert.org/vuls/id/139421"},{"type":"WEB","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/22016"}],"schema_version":"1.7.5"}