Bypassing Firewall Rules via HTTP CONNECT Requests in Astaro Security Linux 6.0

Bypassing Firewall Rules via HTTP CONNECT Requests in Astaro Security Linux 6.0

CVE-2005-2729 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The HTTP proxy in Astaro Security Linux 6.0 does not properly filter HTTP CONNECT requests to localhost, which allows remote attackers to bypass firewall rules and connect to local services.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.