Produkt Netproxy (...) - CVEMAP.ORG

Podatności dla 'Netproxy'

2007-03-02

CVE-2007-1225

The connection log file implementation in Grok Developments NetProxy 4.03 does not record requests that omit http:// in a URL, which might allow remote attackers to conduct unauthorized activities and avoid detection.

CVE-2007-1224

Grok Developments NetProxy 4.03 allows remote attackers to bypass URL filtering via a request that omits "http://" from the URL and specifies the destination port (:80).

Copyright 2024, cxsecurity.com