Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3258

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2005-3258
Last Modified 07 Mar 2011 09:26:08
Published 20 Oct 2005 06:02:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-3258

Summary

The rfc1738_do_escape function in ftp.c for Squid 2.5 STABLE11 and earlier allows remote FTP servers to cause a denial of service (segmentation fault) via certain "odd" responses.

Vulnerable Systems

Application

  • Squid 2.0.patch1

  • Squid 2.0.patch2

  • Squid 2.0.pre1

  • Squid 2.0.release

  • Squid 2.1.patch1

  • Squid 2.1.patch2

  • Squid 2.1.pre1

  • Squid 2.1.pre3

  • Squid 2.1.pre4

  • Squid 2.1.release

  • Squid 2.2.devel3

  • Squid 2.2.devel4

  • Squid 2.2.pre1

  • Squid 2.2.pre2

  • Squid 2.2.stable1

  • Squid 2.2.stable2

  • Squid 2.2.stable3

  • Squid 2.2.stable4

  • Squid 2.2.stable5

  • Squid 2.3.devel2

  • Squid 2.3.devel3

  • Squid 2.3.stable1

  • Squid 2.3.stable2

  • Squid 2.3.stable3

  • Squid 2.3.stable4

  • Squid 2.3.stable5

  • Squid 2.4

  • Squid 2.4.stable1

  • Squid 2.4.stable2

  • Squid 2.4.stable3

  • Squid 2.4.stable4

  • Squid 2.4.stable6

  • Squid 2.4.stable7

  • Squid 2.5.6

  • Squid 2.5.stable1

  • Squid 2.5.stable10

  • Squid 2.5.stable11

  • Squid 2.5.stable2

  • Squid 2.5.stable3

  • Squid 2.5.stable4

  • Squid 2.5.stable5

  • Squid 2.5.stable6

  • Squid 2.5.stable7

  • Squid 2.5.stable8

  • Squid 2.5.stable9


References

CONFIRM - http://www.squid-cache.org/Versions/v2/2.5/bugs/#squid-2.5.STABLE11-rfc1738_do_escape

SECTRACK - 1015085

SUSE - SUSE-SR:2005:027

SECUNIA - 17645

SECUNIA - 17626

SECUNIA - 17513

SECUNIA - 17407

SECUNIA - 17338

SECUNIA - 17287

SECUNIA - 17271


Last Updated: 27 May 2016 10:40:52