Squid before 2.3STABLE5 in HTTP accelerator mode does not enable access control lists (ACLs) when the httpd_accel_host and http_accel_with_proxy off settings are used, which allows attackers to bypass the ACLs and conduct unauthorized activities such as port scanning.
2001-07-18T04:00:00.000
2025-04-03T01:03:51.193
Deferred
CVSSv2: 7.5 (HIGH)
AV:N/AC:L/Au:N/C:P/I:P/A:P
10.0
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | caldera | openlinux_server | 3.1 | Yes |
| Application | immunix | immunix | 6.2 | Yes |
| Application | immunix | immunix | 7.0 | Yes |
| Application | immunix | immunix | 7.0_beta | Yes |
| Application | mandrakesoft | mandrake_single_network_firewall | 7.2 | Yes |
| Application | squid | squid_web_proxy | 2.3stable3 | Yes |
| Application | squid | squid_web_proxy | 2.3stable4 | Yes |
| Operating System | mandrakesoft | mandrake_linux | 7.1 | Yes |
| Operating System | mandrakesoft | mandrake_linux | 7.2 | Yes |
| Operating System | mandrakesoft | mandrake_linux | 8.0 | Yes |
| Operating System | mandrakesoft | mandrake_linux_corporate_server | 1.0.1 | Yes |
| Operating System | redhat | linux | 7.0 | Yes |
| Operating System | trustix | secure_linux | 1.1 | Yes |
| Operating System | trustix | secure_linux | 1.01 | Yes |
| Operating System | trustix | secure_linux | 1.2 | Yes |