Описание
Apache Traffic Server 5.1.x before 5.1.1 allows remote attackers to bypass access restrictions by leveraging failure to properly tunnel remap requests using CONNECT.
Apache Traffic Server 5.1.x before 5.1.1 allows remote attackers to bypass access restrictions by leveraging failure to properly tunnel remap requests using CONNECT.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2014-3624
- https://issues.apache.org/jira/browse/TS-2677
- http://mail-archives.apache.org/mod_mbox/www-announce/201411.mbox/%3C20141101231749.2E3561043F%40minotaur.apache.org%3E
- http://mail-archives.apache.org/mod_mbox/www-announce/201411.mbox/%3C20141101231749.2E3561043F@minotaur.apache.org%3E
- http://www.securityfocus.com/bid/101630
Связанные уязвимости
CVSS3: 9.8
ubuntu
больше 8 лет назад
Apache Traffic Server 5.1.x before 5.1.1 allows remote attackers to bypass access restrictions by leveraging failure to properly tunnel remap requests using CONNECT.
CVSS3: 9.8
nvd
больше 8 лет назад
Apache Traffic Server 5.1.x before 5.1.1 allows remote attackers to bypass access restrictions by leveraging failure to properly tunnel remap requests using CONNECT.
CVSS3: 9.8
debian
больше 8 лет назад
Apache Traffic Server 5.1.x before 5.1.1 allows remote attackers to by ...