Robert Auger

**Name of the Vulnerable Software and Affected Versions** Squid (affected versions not specified) **Description** The issue allows remote attackers to bypass access controls for certain technologies, such as Flash, Java, and Silverlight, by using a crafted web page that modifies the `Host` header in HTTP requests. This could potentially enable communication with restricted intranet sites. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Qbik WinGate (affected versions not specified) **Description** The issue allows remote attackers to bypass access controls for certain technologies, such as Flash, Java, and Silverlight, by using a crafted web page that modifies the `Host` header in HTTP requests. This could potentially enable communication with restricted intranet sites. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SmoothWall SmoothGuardian versions as used in SmoothWall Firewall, NetworkGuardian, and SchoolGuardian 2008 **Description** The issue allows remote attackers to bypass access controls for certain technologies, such as Flash, Java, and Silverlight, and possibly communicate with restricted intranet sites. This is achieved through a crafted web page that causes a client to send HTTP requests with a modified `Host` header. **Recommendations** For SmoothWall SmoothGuardian versions as used in SmoothWall Firewall, NetworkGuardian, and SchoolGuardian 2008, consider disabling transparent interception mode until a patch is available. Restrict access to the HTTP endpoint that uses the `Host` header to determine the remote endpoint to minimize the risk of exploitation. Avoid using the `Host` header to determine remote endpoints in HTTP requests until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Ziproxy version 2.6.0 **Description** The issue allows remote attackers to bypass access controls for certain technologies, such as Flash, Java, and Silverlight, and possibly communicate with restricted intranet sites. This is achieved through a crafted web page that causes a client to send HTTP requests with a modified `Host` header when transparent interception mode is enabled. **Recommendations** For Ziproxy version 2.6.0, consider disabling transparent interception mode until a patch is available to prevent the modification of the `Host` header and mitigate the risk of access control bypass.