cpe:/a:stunnel:stunnel:4.21 cpe:/a:stunnel:stunnel:4.22 cpe:/a:stunnel:stunnel:4.23 cpe:/a:stunnel:stunnel:4.24 cpe:/a:stunnel:stunnel:4.25 cpe:/a:stunnel:stunnel:4.26 cpe:/a:stunnel:stunnel:4.27 cpe:/a:stunnel:stunnel:4.28 cpe:/a:stunnel:stunnel:4.29 cpe:/a:stunnel:stunnel:4.30 cpe:/a:stunnel:stunnel:4.31 cpe:/a:stunnel:stunnel:4.32 cpe:/a:stunnel:stunnel:4.33 cpe:/a:stunnel:stunnel:4.34 cpe:/a:stunnel:stunnel:4.35 cpe:/a:stunnel:stunnel:4.36 cpe:/a:stunnel:stunnel:4.37 cpe:/a:stunnel:stunnel:4.38 cpe:/a:stunnel:stunnel:4.39 cpe:/a:stunnel:stunnel:4.40 cpe:/a:stunnel:stunnel:4.41 cpe:/a:stunnel:stunnel:4.42 cpe:/a:stunnel:stunnel:4.43 cpe:/a:stunnel:stunnel:4.44 cpe:/a:stunnel:stunnel:4.45 cpe:/a:stunnel:stunnel:4.46 cpe:/a:stunnel:stunnel:4.47 cpe:/a:stunnel:stunnel:4.48 cpe:/a:stunnel:stunnel:4.49 cpe:/a:stunnel:stunnel:4.50 cpe:/a:stunnel:stunnel:4.51 cpe:/a:stunnel:stunnel:4.52 cpe:/a:stunnel:stunnel:4.53 cpe:/a:stunnel:stunnel:4.54 CVE-2013-1762 2013-03-08T13:55:01.743-05:00 2014-01-17T00:13:42.380-05:00 6.6 NETWORK HIGH NONE PARTIAL PARTIAL COMPLETE http://nvd.nist.gov 2013-03-18T09:47:00.000-04:00 DEBIAN DSA-2664 IAVM IAVM:2013-B-0023 MANDRIVA MDVSA-2013:130 REDHAT RHSA-2013:0714 CONFIRM https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0097 CONFIRM https://www.stunnel.org/CVE-2013-1762.html stunnel 4.21 through 4.54, when CONNECT protocol negotiation and NTLM authentication are enabled, does not correctly perform integer conversion, which allows remote proxy servers to execute arbitrary code via a crafted request that triggers a buffer overflow.