Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-3501

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2012-3501
Last Modified 27 Aug 2012 12:00:00
Published 25 Aug 2012 06:29:52
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-3501

Summary

The squidclamav_check_preview_handler function in squidclamav.c in SquidClamav 5.x before 5.8 and 6.x before 6.7 passes an unescaped URL to a system command call, which allows remote attackers to cause a denial of service (daemon crash) via a URL with certain characters, as demonstrated using %0D or %0A.

Vulnerable Systems

Application

  • Darold Squidclamav 5.0

  • Darold Squidclamav 5.1

  • Darold Squidclamav 5.2

  • Darold Squidclamav 5.3

  • Darold Squidclamav 5.4

  • Darold Squidclamav 5.5

  • Darold Squidclamav 5.6

  • Darold Squidclamav 5.7

  • Darold Squidclamav 6.0

  • Darold Squidclamav 6.1

  • Darold Squidclamav 6.2

  • Darold Squidclamav 6.3

  • Darold Squidclamav 6.4

  • Darold Squidclamav 6.5

  • Darold Squidclamav 6.6


References

CONFIRM - https://github.com/darold/squidclamav/commit/80f74451f628264d1d9a1f1c0bbcebc932ba5e00

MISC - https://bugs.gentoo.org/show_bug.cgi?id=428778

BID - 54663

OSVDB - 84138

MLIST - [oss-security] 20120816 Re: CVE Request: SquidClamav insufficient escaping flaws

MLIST - [oss-security] 20120816 CVE Request: SquidClamav insufficient escaping flaws

CONFIRM - http://squidclamav.darold.net/news.html

SECUNIA - 49057

CONFIRM - http://freecode.com/projects/squidclamav/releases/346722


Last Updated: 27 May 2016 11:00:20