CERT/CC Vulnerability Note VU#435052Intercepting proxy servers may incorrectly rely on HTTP headers to make connections Vulnerability Note VU#435052 Original Release Date: 2009-02-23 | Last Revised: 2009-09-28 Proxy servers running in interception mode ("transparent" proxies) that make connection decisions based on HTTP header values may be used by an attacker to relay connections. HTTP Host Headers are defined in RFC 2616 and are o
CERT/CC Vulnerability Note VU#867593
