CVE-2005-2729

Published: Aug 30, 2005Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

The HTTP proxy in Astaro Security Linux 6.0 does not properly filter HTTP CONNECT requests to localhost, which allows remote attackers to bypass firewall rules and connect to local services.

Affected (1)

Products: Astaro: Security Linux

Astaro

1 product

Security Linux

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Astaro Security Linux	Version 6.001

References (8)

http://marc.info/?l=bugtraq&m=112501186602731&w=2

Source: cve@mitre.org

http://secunia.com/advisories/16578/

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/14665

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/22021

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=112501186602731&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/16578/

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/14665

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/22021

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.