Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2729

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-2729
Last Modified 05 Sep 2008 04:52:32
Published 30 Aug 2005 07:45:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-2729

Summary

The HTTP proxy in Astaro Security Linux 6.0 does not properly filter HTTP CONNECT requests to localhost, which allows remote attackers to bypass firewall rules and connect to local services.

Vulnerable Systems

Operating System

  • Astaro Security Linux 6.001


References

BUGTRAQ - 20050825 Astaro Security Linux 6.0 - HTTP CONNECT Access Localhost Weakness

XF - astaro-http-proxy-tcp-connect(22021)

BID - 14665

SECUNIA - 16578


Last Updated: 27 May 2016 10:40:37