Security Advisory

CVE-2012-2566

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-06-09 00:00:00

Last updated 2024-08-06 19:34:25

Assigner certcc

State PUBLISHED

Description

Bloxx Web Filtering before 5.0.14 does not properly interpret X-Forwarded-For headers during access-control and logging operations for HTTPS connection attempts, which allows remote attackers to bypass intended IP address and domain restrictions, and trigger misleading log entries, via a crafted header.

← Browse all CVEs View on cve.org ↗