Astaro Security Linux HTTP TCP connect
| astaro-http-proxy-tcp-connect (22021) |  Low Risk |
Description:
Astaro Security Linux could allow a remote attacker to use the HTTP proxy to make unauthorized TCP connections to the local host. A remote attacker could connect to the HTTP proxy on port 8080 and make unauthorized TCP connections to any service on the system that is accessible through the HTTP proxy.
Consequences:
Bypass Security
Remedy:
Upgrade to the latest version of Astaro Security Linux (6.0.0.2 or later), available from the Astaro Web site. See References.
References:
- Astaro Web site: Astaro - Welcome to Astaro.
- BugTraq Mailing List, Thu Aug 25 2005 - 02:55:45 CDT : Astaro Security Linux 6.0 - HTTP CONNECT Access Localhost Weakness.
- BID-14665: Astaro Security Linux HTTP CONNECT Unauthorized Access Weakness
- CVE-2005-2729: The HTTP proxy in Astaro Security Linux 6.0 does not properly filter HTTP CONNECT requests to localhost, which allows remote attackers to bypass firewall rules and connect to local services.
- SA16578: Astaro Security Linux Proxy Security Issue
Platforms Affected:
- Astaro Astaro Security Linux 6.0
Reported:
Aug 25, 2005
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net