Hogben, Ian wrote:
>
> Hello, all:
>
> What kind of practical application of this bug can I look forward to? It
> looks like a bug without an applied crack exploiting it, but what could the
> effect be, and is it a serious concern...?
>
> http://www.securityfocus.com/level2/bottom.html?go=vulnerabilities&id=741
It this is the vulnerability related to authentication then it is about
unauthorized access to the proxy when proxy_auth is used.
If you are not using proxy_auth then this cannot be exploited.
If you are using proxy_auth then a carefully constructed request can
confuse Squids communication to the external authenticator process.
-- Henrik Nordstrom Squid hackerReceived on Wed Oct 27 1999 - 14:22:55 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:49:06 MST