Trustix: >> Secure Linux >> 1.01 Security Vulnerabilities
Squid before 2.3STABLE5 in HTTP accelerator mode does not enable access control lists (ACLs) when the httpd_accel_host and http_accel_with_proxy off settings are used, which allows attackers to bypass the ACLs and conduct unauthorized activities such as port scanning.
CVSS Score
7.5
EPSS Score
0.002
Published
2001-07-18