Squid before 2.3STABLE5 in HTTP accelerator mode does not enable access control lists (ACLs) when the httpd_accel_host and http_accel_with_proxy off settings are used, which allows attackers to bypass the ACLs and conduct unauthorized activities such as port scanning.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Openlinux_server | Caldera | 3.1 (including) | 3.1 (including) |
Immunix | Immunix | 6.2 (including) | 6.2 (including) |
Immunix | Immunix | 7.0 (including) | 7.0 (including) |
Immunix | Immunix | 7.0_beta (including) | 7.0_beta (including) |
Mandrake_single_network_firewall | Mandrakesoft | 7.2 (including) | 7.2 (including) |
Squid_web_proxy | Squid | 2.3stable3 (including) | 2.3stable3 (including) |
Squid_web_proxy | Squid | 2.3stable4 (including) | 2.3stable4 (including) |
Red Hat Linux 7.0 | RedHat | * |