CONNECT Method Allowed in HTTP Server Or HTTP Proxy Server Vulnerability
Issue
- Security vulnerability scanner reports Apache HTTPD is vulnerable because
CONNECTmethod is allowed. For example, the scanner reports:- CONNECT Method Allowed in HTTP Server Or HTTP Proxy Server Vulnerability
- The HTTP server or the HTTP proxy server accepts the "CONNECT" method.
Environment
- Red Hat Enterprise Linux
- 5
- 6
- 7
- Red Hat JBoss Web Server
- 2
- 3
- Red Hat JBoss Core Services
- Apache httpd
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.
Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.
