Info

Disclosure

Feb 29, 2004

Discovery

Unknown

Dates

Exploit

Feb 29, 2004

Solution

Unknown

Description

Squid Web Proxy Cache contains a flaw that may allow a malicious user to bypass access control lists. The issue is triggered when sending a specially crafted URL request containing '%00' in it. It is possible that the flaw may allow unauthorized access resulting in a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Public
Disclosure: OSVDB Verified

Solution

Upgrade to version 2.5.STABLE5 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Team Squid	Squid Web Proxy Cache	2.5.STABLE4
		2.x

Secure Computing Corporation	SnapGear SG300	2.0.2
	SnapGear SG530	2.0.2
	SnapGear SG550	2.0.2
	SnapGear SG570	2.0.2
	SnapGear SG575	2.0.2

References

Security Tracker: 1009267
ISS X-Force ID: 15366
CVE ID: 2004-0189 (see also: NVD)
Bugtraq ID: 9778
Vendor Specific Advisory URL: ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.16/SCOSA-2005.16.txt http://distro.conectiva.com/atualizacoes/index.php?id=a&anuncio=000838
http://www.debian.org/security/2004/dsa-474
http://www.squid-cache.org/Advisories/SQUID-2004_1.txt
Vendor Specific News/Changelog Entry: http://www.cyberguard.info/snapgear/releases.html
Vendor URL: http://www.squid-cache.org/
CIAC Advisory: o-108
RedHat RHSA: RHSA-2004:134-01

Credit

Mitch Adair -

Direct URL: http://osvdb.org/36218

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Team Squid

Squid Web Proxy Cache

Secure Computing Corporation

SnapGear SG300

SnapGear SG530

SnapGear SG550

SnapGear SG570

SnapGear SG575

References

Credit