CVE-2017-11747

low-risk

Published 2017-07-30

main.c in Tinyproxy 1.8.4 and earlier creates a /run/tinyproxy/tinyproxy.pid file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for tinyproxy.pid modification before a root script executes a "kill `cat /run/tinyproxy/tinyproxy.pid`" command.

Do I need to act?

0.03% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.5/10 Medium

LOCAL / LOW complexity

Affected Products (1)

Tinyproxy

Affected Vendors

Tinyproxy Project

References (4)

Issue Tracking https://github.com/tinyproxy/tinyproxy/issues/106

https://lists.debian.org/debian-lts-announce/2020/03/msg00037.html

Issue Tracking https://github.com/tinyproxy/tinyproxy/issues/106

https://lists.debian.org/debian-lts-announce/2020/03/msg00037.html

/ 100

low-risk

Severity 18/34 · Moderate

Exploitability 0/34 · Minimal

Exposure 5/34 · Minimal