FTP proxy in Squid prior to 2.4.STABLE6 does not compare the IP addresses of control and data connections with the FTP server, which allows remote malicious users to bypass firewall rules or spoof FTP server responses.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
squid squid |