4 matches found
Mandrake Linux Security Advisory : squid (MDKSA-2001:066)
The Squid proxy server has a serious security flaw in versions 2.3.STABLE2 through 2.3.STABLE4. This problem surfaces when Squid is used in httpdaccel mode. If you configure httpaccelwithproxy off then any request to Squid is allowed. Malicious users may use your proxy to portscan remote systems,...
CVE-2001-1030
Squid before 2.3STABLE5 in HTTP accelerator mode does not enable access control lists ACLs when the httpdaccelhost and httpaccelwithproxy off settings are used, which allows attackers to bypass the ACLs and conduct unauthorized activities such as port scanning...
CVE-2001-1030
CVE-2001-1030 affects the Squid proxy server when used in HTTP accelerator mode. The vulnerability exists if httpd_accel_host and http_accel_with_proxy are off, enabling an attacker to bypass ACLs and perform unauthorized activities such as port scanning. Concrete details from connected sources i...
CVE-2001-1030
Squid before 2.3STABLE5 in HTTP accelerator mode does not enable access control lists ACLs when the httpdaccelhost and httpaccelwithproxy off settings are used, which allows attackers to bypass the ACLs and conduct unauthorized activities such as port scanning...