Citrix Access Gateway - Logout script configured with UNC path is failed to execute with an error 2 upon logging off from VPN plugin

In the below VPN log snppet, we can see that the Proxy Server configuration and Logout Script configured are pushed once the user has established the VPN session. Once the user has logged out from VPN plugin, the Logout script should get executed and clear the proxy server configuration from...

Additional Analysis into the SUNBURST Backdoor | McAfee Blogs

ARCHIVED STORY Additional Analysis into the SUNBURST Backdoor Christiaan Beek · DEC 17, 2020 Executive Summary There has been considerable focus on the recent disclosures associated with SolarWinds, and while existing analysis on the broader campaign has resulted in detection against specific IoC...

[SECURITY] [DSA 4805-1] trafficserver security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4805-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 07, 2020 https://www.debian.org/security/faq -...

Cache Poisoning

apache/trafficserver is vulnerable to cache poisoning. Insufficient validation of user inputs allow a remote attacker to send specially crafted data to the proxy server and poison negative server's cache...

Information Disclosure

chromium is vulnerable to information disclosure. An implementation error in QUIC Networking allows an attacker running or able to cause use of a proxy server to obtain cleartext of transport encryption via a malicious network proxy...

CVE-2020-2048

An information exposure through log file vulnerability exists where the password for the configured system proxy server for a PAN-OS appliance may be displayed in cleartext when using the CLI in Palo Alto Networks PAN-OS software. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.17...

CVE-2020-2048

An information exposure through log file vulnerability exists where the password for the configured system proxy server for a PAN-OS appliance may be displayed in cleartext when using the CLI in Palo Alto Networks PAN-OS software. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.17...

Design/Logic Flaw

An information exposure through log file vulnerability exists where the password for the configured system proxy server for a PAN-OS appliance may be displayed in cleartext when using the CLI in Palo Alto Networks PAN-OS software. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.17...

PAN-OS: System proxy passwords may be logged in clear text while viewing system state

An information exposure through log file vulnerability exists where the password for the configured system proxy server for a PAN-OS appliance may be displayed in cleartext when using the CLI in Palo Alto Networks PAN-OS software. Work around: This issue impacts the management web interface. You...

RLSA-2020:4743 Moderate: squid:4 security, bug fix, and enhancement update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. The following packages have been upgraded to a later upstream version: squid 4.11. BZ1829467 Security Fixes: squid: Improper input validation in request allows for proxy manipulation...

Moderate: squid:4 security, bug fix, and enhancement update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. The following packages have been upgraded to a later upstream version: squid 4.11. BZ1829467 Security Fixes: squid: Improper input validation in request allows for proxy manipulation...

squid:4 security, bug fix, and enhancement update

An update is available for libecap. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Squid is a high-performance proxy caching server for web clients, supporting...

Web Cache Poisoning

Overview rack is a minimal, modular and adaptable interface for developing web applications in Ruby. By wrapping HTTP requests and responses in the simplest way possible, it unifies and distills the API for web servers, web frameworks, and software in between the so-called middleware into a singl...

Envoy has an unspecified vulnerability (CNVD-2021-58577)

Envoy is an open source distributed proxy server. a security vulnerability exists in Envoy, which stems from the fact that Envoy hosts between 2d69e30 and 3b5acb2 may not be able to resolve request URLs that require host normalization. no details of the vulnerability are currently available...

Envoy has an unspecified vulnerability (CNVD-2021-58578)

Envoy is an open source distributed proxy server. security vulnerabilities exist in versions prior to Envoy 1.15.0. No details of the vulnerability are currently available...

H2Csmuggler - HTTP Request Smuggling Over HTTP/2 Cleartext (H2C)

h2cSmuggler smuggles HTTP traffic past insecure edge-server proxypass configurations by establishing HTTP/2 cleartext h2c communications with h2c-compatible back-end servers, allowing a bypass of proxy rules and access controls. See my detailed write-up below for: Technical breakdown of the...

Important: Red Hat Security Advisory: squid security update

An update for squid is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

SOCKS Proxy Server

This module provides a SOCKS proxy server that uses the builtin Metasploit routing to relay connections. Module Options msf use auxiliary/server/socksproxy msf auxiliarysocksproxy show actions ...actions... msf auxiliarysocksproxy set ACTION msf auxiliarysocksproxy show options ...show and set...

Offensive Security Testing Using Cloud Tools

When performing offensive security testing, assessors sometimes run into issues where their source IP address gets blacklisted. For example, we might be performing a web application test and, due to the many suspicious queries being performed, our IP address is suddenly blocked. While on the...

Denial of Service in http-proxy

Versions of http-proxy prior to 1.18.1 are vulnerable to Denial of Service. An HTTP request with a long body triggers an ERRHTTPHEADERSSENT unhandled exception that crashes the proxy server. This is only possible when the proxy server sets headers in the proxy request using the proxyReq.setHeader...