Squid cachemgr.cgi Unauthorized Connection Vulnerability
Publish Date: 21 de июля de 2015
Severity: : High
CVE Kennungen: : CVE-1999-0710
Advisory Date: 21 de июля de 2015
DESCRIPTION
The Squid package in Red Hat Linux 5.2 and 6.0, and other distributions, installs cachemgr.cgi in a public web directory, which allows remote attackers to use it as an intermediary to connect to other systems.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1000388
Trend Micro Deep Security DPI Rule Name: 1000388 - Squid cachemgr.cgi Unauthorized Connection Vulnerability
AFFECTED SOFTWARE AND VERSION:
- Red Hat Red Hat Linux 5.2
- Red Hat Red Hat Linux 6.0