Computer Security
[EN] securityvulns.ru no-pyccku


squid restrictions bypass
Published:10.08.2015
Source:
SecurityVulns ID:14625
Type:remote
Threat Level:
5/10
Description:Restrictions bypass is possible under some configurations.
Affected:SQUID : squid 3.5
CVE:CVE-2015-5400 (Squid before 3.5.6 does not properly handle CONNECT method peer responses when configured with cache_peer, which allows remote attackers to bypass intended restrictions and gain access to a backend proxy via a CONNECT request.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 3327-1] squid3 security update (10.08.2015)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod