Lucene search
MitreCVE-2005-2729HistoryAug 30, 2005 - 11:45 a.m.
CVE-2005-2729
2005-08-3011:45:00
mitre
web.nvd.nist.gov
29
astaro security linux
http proxy
firewall bypass
cve-2005-2729
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7
Confidence
Low
EPSS
0.044
Percentile
92.5%
The HTTP proxy in Astaro Security Linux 6.0 does not properly filter HTTP CONNECT requests to localhost, which allows remote attackers to bypass firewall rules and connect to local services.
Affected configurations
Node
astarosecurity_linuxMatch6.001
| Vendor | Product | Version | CPE |
|---|---|---|---|
| astaro | security_linux | 6.001 | cpe:2.3:o:astaro:security_linux:6.001:*:*:*:*:*:*:* |
Related
exploitdb
exploitdb
Astaro Security Linux 6.0 01 - HTTP CONNECT Unauthorized Access
2005-08-25 00:00:00
cvelist
cvelist
CVE-2005-2729
2005-08-29 04:00:00
nvd
nvd
CVE-2005-2729
2005-08-30 11:45:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7
Confidence
Low
EPSS
0.044
Percentile
92.5%
Related for CVE-2005-2729