The annual curl user survey is up. Please donate a few minutes and answer some questions!
curl / Docs / Security Problems / Proxy Authentication Header Information Leakage

Proxy Authentication Header Information Leakage

Project curl Security Advisory, August 3rd 2003 - Permalink

VULNERABILITY

When curl connected to a site via an HTTP proxy with the CONNECT request, the user and password used for the proxy connection was also sent off to the remote server.

INFO

The Common Vulnerabilities and Exposures (CVE) project did not assign a name to this issue. securityfocus.com refers to it as BID 8432

AFFECTED VERSIONS