Diamond Member ThaHaka 0 Posted June 22 Diamond Member Share Posted June 22 This is the hidden content, please Sign In or Sign Up A heap over-read in the Squid web proxy can leak another user's cleartext HTTP request, including any credentials or session tokens it carries, to anyone already allowed to send traffic through the same proxy. The bug traces to a 1997 FTP-parsing change and is still live in Squid's default configuration. Researchers at Calif.io disclosed it in June and named it Squidbleed ( This is the hidden content, please Sign In or Sign Up 0 Quote Link to comment https://hopzone.eu/forums/topic/318740-h4ckn3ws29-year-old-squid-proxy-bug-squidbleed-can-leak-cleartext-http-requests/ Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.