The HTTP proxy in Astaro Security Linux 6.0 does not properly filter HTTP CONNECT requests to localhost, which allows remote attackers to bypass firewall rules and connect to local services.Referenceshttp://secunia.com/advisories/16578/http://marc.info/?l=bugtraq&m=112501186602731&w=2http://www.securityfocus.com/bid/14665https://exchange.xforce.ibmcloud.com/vulnerabilities/22021
