Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0189

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-0189
Last Modified 05 Sep 2008 04:37:45
Published 15 Mar 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0189

Summary

The "%xx" URL decoding function in Squid 2.5STABLE4 and earlier allows remote attackers to bypass url_regex ACLs via a URL with a NULL ("%00") characterm, which causes Squid to use only a portion of the requested URL when comparing it against the access control lists.

Vulnerable Systems

Application

  • Squid 2.0 Patch2

  • Squid 2.1 Patch2

  • Squid 2.3 Stable5

  • Squid 2.4

  • Squid 2.4 Stable7

  • Squid 2.5 Stable3

  • Squid 2.5 Stable4


References

CONFIRM - http://www.squid-cache.org/Advisories/SQUID-2004_1.txt

BID - 9778

XF - squid-urlregex-acl-bypass(15366)

REDHAT - RHSA-2004:134

REDHAT - RHSA-2004:133

OSVDB - 5916

MANDRAKE - MDKSA-2004:025

DEBIAN - DSA-474

GENTOO - GLSA-200403-11

BUGTRAQ - 20040401 [OpenPKG-SA-2004.008] OpenPKG Security Advisory (squid)

CONECTIVA - CLA-2004:838

SGI - 20040404-01-U

SCO - SCOSA-2005.16


Last Updated: 27 May 2016 10:38:30