Astaro Security Linux 6.0 01 HTTP CONNECT Unauthorized Access Weakness

2005-08-25T00:00:00
ID EDB-ID:26198
Type exploitdb
Reporter Oliver Karow
Modified 2005-08-25T00:00:00

Description

Astaro Security Linux 6.0 01 HTTP CONNECT Unauthorized Access Weakness. CVE-2005-2729. Remote exploit for linux platform

                                        
                                            source: http://www.securityfocus.com/bid/14665/info

Astaro Security Linux is prone to a weakness that may allow remote attackers to connect to arbitrary ports on a vulnerable computer.

This weakness may be combined with other attacks to exploit latent vulnerabilities. An attacker can bypass access controls implemented by the application through this attack.

Astaro Security Linux 6.001 is prone to this weakness. 

Connect to TCP port 8080 and enter the following command:

CONNECT localhost:80 HTTP/1.0