NetIQ Access Manager 4.1
Access Manager Access Gateway Appliance and service
httpoxy is a set of vulnerabilities that affect application code running in CGI, or CGI-like environments. It comes down to a simple namespace conflict:
- RFC 3875 (CGI) puts the HTTP
Proxyheader from a request into the environment variables as
HTTP_PROXYis a popular environment variable used to configure an outgoing proxy
Is the Apache from Access Gateway vulnerable?