CVE
- Id
- 82677
- CVE No.
- CVE-2015-5400
- Status
- Candidate
- Description
- Squid before 3.5.6 does not properly handle CONNECT method peer responses when configured with cache_peer, which allows remote attackers to bypass intended restrictions and gain access to a backend proxy via a CONNECT request.
- Phase
- Assigned (20150706)
- Votes
- None (candidate not yet proposed)
- Comments