Oval Definition:
oval:com.ubuntu.trusty:def:20155400000
Revision Date
:
2015-09-28
Version
:
1
Title
:
CVE-2015-5400 on Ubuntu 14.04 LTS (trusty) - low.
Description
:
Squid before 3.5.6 does not properly handle CONNECT method peer responses when configured with cache_peer, which allows remote attackers to bypass intended restrictions and gain access to a backend proxy via a CONNECT request.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2015-5400
Platform(s)
:
Ubuntu 14.04 LTS
Product(s)
:
Definition Synopsis
Ubuntu 14.04 LTS (trusty) is installed.
AND
While related to the CVE in some way, a decision has been made to ignore it.
BACK