RSS   Vulnerabilities for 'Netproxy'   RSS

2007-03-02
 
CVE-2007-1225

 

 
The connection log file implementation in Grok Developments NetProxy 4.03 does not record requests that omit http:// in a URL, which might allow remote attackers to conduct unauthorized activities and avoid detection.

 
 
CVE-2007-1224

 

 
Grok Developments NetProxy 4.03 allows remote attackers to bypass URL filtering via a request that omits "http://" from the URL and specifies the destination port (:80).

 


Copyright 2024, cxsecurity.com

 

Back to Top