Squid before 2.3STABLE5 in HTTP accelerator mode does not enable access control lists (ACLs) when the httpd_accel_host and http_accel_with_proxy off settings are used, which allows attackers to bypass the ACLs and conduct unauthorized activities such as port scanning.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
No history.
Information
Published : 2001-07-18 04:00
Updated : 2024-02-28 10:24
NVD link : CVE-2001-1030
Mitre link : CVE-2001-1030
CVE.ORG link : CVE-2001-1030
JSON object : View
Products Affected
mandrakesoft
- mandrake_single_network_firewall
- mandrake_linux
- mandrake_linux_corporate_server
immunix
- immunix
redhat
- linux
caldera
- openlinux_server
squid
- squid_web_proxy
trustix
- secure_linux
CWE