Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2001-1030

Опубликовано: 18 июл. 2001
Источник: nvd
CVSS2: 7.5
EPSS Низкий

Описание

Squid before 2.3STABLE5 in HTTP accelerator mode does not enable access control lists (ACLs) when the httpd_accel_host and http_accel_with_proxy off settings are used, which allows attackers to bypass the ACLs and conduct unauthorized activities such as port scanning.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:caldera:openlinux_server:3.1:*:*:*:*:*:*:*
cpe:2.3:a:immunix:immunix:6.2:*:*:*:*:*:*:*
cpe:2.3:a:immunix:immunix:7.0:*:*:*:*:*:*:*
cpe:2.3:a:immunix:immunix:7.0_beta:*:*:*:*:*:*:*
cpe:2.3:a:mandrakesoft:mandrake_single_network_firewall:7.2:*:*:*:*:*:*:*
cpe:2.3:a:squid:squid_web_proxy:2.3stable3:*:*:*:*:*:*:*
cpe:2.3:a:squid:squid_web_proxy:2.3stable4:*:*:*:*:*:*:*
Конфигурация 2

Одно из

cpe:2.3:o:mandrakesoft:mandrake_linux:7.1:*:*:*:*:*:*:*
cpe:2.3:o:mandrakesoft:mandrake_linux:7.2:*:*:*:*:*:*:*
cpe:2.3:o:mandrakesoft:mandrake_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:mandrakesoft:mandrake_linux_corporate_server:1.0.1:*:*:*:*:*:*:*
cpe:2.3:o:redhat:linux:7.0:*:*:*:*:*:*:*
cpe:2.3:o:trustix:secure_linux:1.1:*:*:*:*:*:*:*
cpe:2.3:o:trustix:secure_linux:1.01:*:*:*:*:*:*:*
cpe:2.3:o:trustix:secure_linux:1.2:*:*:*:*:*:*:*

EPSS

Процентиль: 41%
0.00184
Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

redhat логотип

CVE-2001-1030

redhat
около 24 лет назад

Squid before 2.3STABLE5 in HTTP accelerator mode does not enable access control lists (ACLs) when the httpd_accel_host and http_accel_with_proxy off settings are used, which allows attackers to bypass the ACLs and conduct unauthorized activities such as port scanning.

github логотип

GHSA-g8hh-whpr-gfp2

github
больше 3 лет назад

Squid before 2.3STABLE5 in HTTP accelerator mode does not enable access control lists (ACLs) when the httpd_accel_host and http_accel_with_proxy off settings are used, which allows attackers to bypass the ACLs and conduct unauthorized activities such as port scanning.

EPSS

Процентиль: 41%
0.00184
Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other