56 matches found
[WATOBO 0.9.13] THE Web Application Toolbox
WATOBO is intended to enable security professionals to perform highly efficient semi-automated web application security audits. WATOBO works like a local proxy, similar to Webscarab, Paros or BurpSuite. Additionally, WATOBO supports passive and active checks. Passive checks are more like filter...
Scientific Linux Security Update : squid on SL6.x i386/x86_64 (20130221)
A denial of service flaw was found in the way the Squid Cache Manager processed certain requests. A remote attacker who is able to access the Cache Manager CGI could use this flaw to cause Squid to consume an excessive amount of memory. CVE-2012-5643 This update also fixes the following bugs : -...
RHEL 6 : squid (RHSA-2013:0505)
Updated squid packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
Moderate: Red Hat Security Advisory: squid security and bug fix update
Updated squid packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
icap-info NSE Script
Tests a list of known ICAP service names and prints information about any it detects. The Internet Content Adaptation Protocol ICAP is used to extend transparent proxy servers and is generally used for content filtering and antivirus scanning. Example Usage nmap -p 1344 --script icap-info Script...
Grid. Система распределенных вычислений.
Введение. Материал появился в результате анализа замечаний и предложений, поступивших от тех, кто прочитал статью “Процесс создания ПО для распределенных вычислений C++”. Отсутствие явного распределения задачи сервером между клиентами и отсутствие конкретной задачи в принципе заставили автора ина...
Ziproxy Security Bypass Vulnerability
This host is running Ziproxy server and is prone to security bypass vulnerability. OpenVAS Vulnerability Test $Id: secpodziproxysecbypassvuln.nasl 5676 2017-03-22 16:29:37Z cfi $ Ziproxy Security Bypass Vulnerability Authors: Nikita MR Copyright: Copyright c 2009 SecPod, http://www.secpod.com Thi...
3proxy buffer overflow
Buffer overflow on parsing transparent HTTP proxy request...
Governs the granting of leave true when True also false-the“real”IP security risks-vulnerability warning-the black bar safety net
Let us look at the ASP code first: Function getIP Dim strIPAddr as string If Request. ServerVariables"HTTPXFORWARDEDFOR" = "" OR InStrRequest. ServerVariables"HTTPXFORWARDEDFOR", "unknown" 0 Then strIPAddr = Request. ServerVariables"REMOTEADDR" ElseIf InStrRequest...
Governs the granting of leave true when True also false—the“real”IP brings security risks-vulnerability warning-the black bar safety net
Author: lake2, http://lake2.0x54.org Let us look at the ASP code first: | Function getIP Dim strIPAddr as string If Request. ServerVariables"HTTPXFORWARDEDFOR" = "" OR InStrRequest. ServerVariables"HTTPXFORWARDEDFOR", "unknown" 0 Then strIPAddr = Request. ServerVariables"REMOTEADDR" ElseIf...
Default configuration
The transparent proxy feature of the Cisco Application Velocity System AVS 3110 5.0 and 4.0 and earlier, and 3120 5.0.0 and earlier, has a default configuration that allows remote attackers to proxy arbitrary TCP connections, aka Bug ID CSCsd32143...
CVE-2006-2322
The transparent proxy feature of the Cisco Application Velocity System AVS 3110 5.0 and 4.0 and earlier, and 3120 5.0.0 and earlier, has a default configuration that allows remote attackers to proxy arbitrary TCP connections, aka Bug ID CSCsd32143...
CVE-2006-2322
The CVE-2006-2322 entry describes a vulnerability in Cisco Application Velocity System (AVS) where the default configuration of AVS 3110 (versions 5.0 and 4.0 and earlier) and AVS 3120 (5.0.0 and earlier) allows remote attackers to proxy arbitrary TCP connections via the transparent proxy feature...
CVE-2006-2322
The transparent proxy feature of the Cisco Application Velocity System AVS 3110 5.0 and 4.0 and earlier, and 3120 5.0.0 and earlier, has a default configuration that allows remote attackers to proxy arbitrary TCP connections, aka Bug ID CSCsd32143...
HTTP TRACE
Transparent or reverse HTTP proxies may be implement on some sites. OpenVAS Vulnerability Test $Id: httptrace.nasl 6768 2017-07-20 08:06:19Z cfischer $ HTTP TRACE Authors: Michel Arboi Copyright: Copyright C 2002 Michel Arboi This program is free software; you can redistribute it and/or modify it...
TCP connection establishing via Cisco Transparent Cache Engine
It's possible to establish TCP connection via transparent proxy in default configuration...