Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Squid Permissions Privileges and Access Controls Vulnerability - CVE-2015-5400 - Vulnerability Database
Squid

Squid Permissions Privileges and Access Controls Vulnerability - CVE-2015-5400

Medium
Reference: CVE-2015-5400
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2015-5400
Title: Squid Permissions Privileges and Access Controls Vulnerability
Overview:

Squid before 3.5.6 does not properly handle CONNECT method peer responses when configured with cache_peer which allows remote attackers to bypass intended restrictions and gain access to a backend proxy via a CONNECT request.