2 matches found
CVE-2005-0316
WebWasher Classic 2.2.1 and 3.3 (server mode) are affected by CVE-2005-0316: the product fails to drop CONNECT requests to localhost from external hosts, enabling remote bypass of access restrictions. Affected component is WebWasher Server mode proxy handling CONNECT to 127.0.0.1. Impact is descr...
CVE-2005-0316
WebWasher Classic 2.2.1 and 3.3, when running in server mode, does not properly drop CONNECT requests to the localhost from external systems, which could allow remote attackers to bypass intended access restrictions...