Open HTTP Proxy Server Vulnerability

Open HTTP Proxy Server Vulnerability

CVE-2011-1499 · LOW Severity

AV:N/AC:H/AU:N/C:N/I:P/A:N

acl.c in Tinyproxy before 1.8.3, when an Allow configuration setting specifies a CIDR block, permits TCP connections from all IP addresses, which makes it easier for remote attackers to hide the origin of web traffic by leveraging the open HTTP proxy server.

Learn more about our Web App Pen Testing.