RETIRED: Squid Proxy 'Host' HTTP Header Security Bypass Vulnerability

Squid Proxy is prone to a security-bypass vulnerability because it fails to properly enforce filtering rules.

A successful attack will allow an attacker to bypass intended security restrictions; this may aid in other attacks.

Squid Proxy 3.1.19 is vulnerable; other versions may also be affected.

Note: This BID is being retired; the issue can not be exploited as described.


 

Privacy Statement
Copyright 2010, SecurityFocus