← CVECheck
HomeVulnerabilities

CVE-2002-0714 — HIGH severity vulnerability (FTP proxy in Squid before 2.4.STABLE6 does not compare the I)

FTP proxy in Squid before 2.4.STABLE6 does not compare the IP addresses of control and data connections with the FTP server, which allows remote attackers to bypass firewall rules or spoof FTP server responses.

CVE IDCVE-2002-0714
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2002-07-26
Last modified2026-04-16
DescriptionFTP proxy in Squid before 2.4.STABLE6 does not compare the IP addresses of control and data connections with the FTP server, which allows remote attackers to bypass firewall rules or spoof FTP server responses.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →