CVE-2004-2480
EPSS 2.0%
Description
Squid Web Proxy Cache 2.3.STABLE5 allows remote attackers to bypass security controls and access arbitrary websites via "@@" sequences in a URL within Internet Explorer.
How to fix CVE-2004-2480
To remediate CVE-2004-2480, upgrade the affected package to a fixed version below.
- Debian/squid—upgrade to 2.5 or later
Is CVE-2004-2480 being exploited?
Low — EPSS is 2.0%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 2.5