Squid Proxy Version Detection

The remote host is running the Squid proxy server, an open source proxy server. It was possible to read the version number from the banner. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid49692; scriptversion"1.15"; scriptsetattributeattribute:"pluginmodificationdate"...

[SECURITY] Fedora 13 Update: squid-3.1.8-1.fc13

Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DN...

Squid 3.1.6 DNS Reply Denial of Service

According to its banner, the version of the Squid proxy caching server installed on the remote host is 3.1.6. This version is affected by a denial of service vulnerability that is caused by an assertion failure when contacting IPv4-only DNS resolvers. Note that Nessus has relied only on the versi...

Grid. Система распределенных вычислений.

Введение. Материал появился в результате анализа замечаний и предложений, поступивших от тех, кто прочитал статью “Процесс создания ПО для распределенных вычислений C++”. Отсутствие явного распределения задачи сервером между клиентами и отсутствие конкретной задачи в принципе заставили автора ина...

CVE-2010-2385

Unspecified vulnerability in Oracle Sun Java System Web Proxy Server 4.0.13 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Administration Server...

Design/Logic Flaw

Unspecified vulnerability in Oracle Sun Java System Web Proxy Server 4.0.13 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Administration Server...

CVE-2010-2385

Unspecified vulnerability in Oracle Sun Java System Web Proxy Server 4.0.13 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Administration Server...

CVE-2010-2385

CVE-2010-2385 affects Sun Java System Web Proxy Server 4.0.13. The vulnerability is described as unspecified and exploitable remotely via the Administration Server (HTTP). The CVE is listed with a base score of 5.8 (Medium) and is included in the Oracle July 2010 Critical Patch Update advisory, w...

PHP Proxy Server by Dr.Z3r0

Не знаю достойно ли это раздела релизы. Но запощу для его наполнения. PHP Proxy Server v1.1 Вообщем вот проксик написал. Писал для себя скажем так для развития. Интересовала библиотека socket. Вот собственно из этого и получился прокси серв. Возможности эт собственно сам прокси сервер,...

VMware WebAccess Multiple Vulnerabilities - Linux

VMWare Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

VMware WebAccess Multiple Vulnerabilities - Windows

VMWare Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Spoofing

WebAccess in VMware VirtualCenter 2.0.2 and 2.5, VMware Server 2.0, and VMware ESX 3.0.3 and 3.5 allows remote attackers to leverage proxy-server functionality to spoof the origin of requests via unspecified vectors, related to a "URL forwarding vulnerability."...

CVE-2010-0686

Summary: CVE-2010-0686 concerns VMware WebAccess in VMware VirtualCenter (2.0.2/2.5), VMware Server 2.0, and VMware ESX (3.0.3/3.5). The issue is a URL forwarding vulnerability where the WebAccess proxy functionality does not properly validate/limit inbound requests, allowing an attacker to spoof...

Low: Red Hat Security Advisory: squid security and bug fix update

An updated squid package that fixes two security issues and several bugs is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

CVE-2010-0962

The FTP proxy server in Apple AirPort Express, AirPort Extreme, and Time Capsule with firmware 7.5 does not restrict the IP address and port specified in a PORT command from a client, which allows remote attackers to leverage intranet FTP servers for arbitrary TCP forwarding via a crafted PORT...

Command injection

The FTP proxy server in Apple AirPort Express, AirPort Extreme, and Time Capsule with firmware 7.5 does not restrict the IP address and port specified in a PORT command from a client, which allows remote attackers to leverage intranet FTP servers for arbitrary TCP forwarding via a crafted PORT...

CVE-2010-0962

The CVE-2010-0962 case concerns the FTP proxy server in Apple AirPort Express, AirPort Extreme, and Time Capsule firmware 7.5. The root cause is that the FTP proxy does not restrict the IP address and port specified in a PORT command, allowing a client to trigger forwarding to an intranet FTP ser...

Qbik WinGate WWW Proxy Server URL Processing Overflow

$Id: qbikwingatewwwproxy.rb 8547 2010-02-18 15:58:26Z patrickw $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Design/Logic Flaw

Google Chrome before 4.0.249.89, when a SOCKS 5 proxy server is configured, sends DNS queries directly, which allows remote DNS servers to obtain potentially sensitive information about the identity of a client user via request logging, as demonstrated by a proxy server that was configured for th...

CVE-2010-0644

Google Chrome prior to 4.0.249.89 is affected when a SOCKS5 proxy is configured: Chrome sends DNS queries directly, allowing remote DNS servers logging the requests to potentially reveal the user’s identity. This CVE (CVE-2010-0644) is documented across multiple sources (NVD entry and OpenVAS/Nes...