Stunnel 5.00 through 5.13, when using the redirect option, does not
redirect client connections to the expected server after the initial
connection, which allows remote attackers to bypass authentication.
Author | Note |
---|---|
sbeattie | possibly does not affect 4.x based on stunnel advisory |