Squid 2.5.x < 2.5.STABLE8 Information Disclosure

medium Nessus Network Monitor Plugin ID 2448

Synopsis

The remote proxy server can be tricked into disclosing portions of its memory.

Description

The remote host running a Squid proxy on this port.
There is a vulnerability in the remote version of this software that may allow an attacker to obtain sensitive information via URLs containing invalid hostnames that cause DNS operations to fail, which results in references to previously used error messages.

Solution

Upgrade to Squid 2.5.STABLE8, 3.0-PRE4, or apply the vendor patches.

See Also

http://bugs.squid-cache.org/show_bug.cgi?id=1143

http://www.squid-cache.org/Versions/v2/2.5/bugs

Plugin Details

Severity: Medium

ID: 2448

Family: Web Servers

Published: 10/12/2004

Updated: 3/6/2019

Nessus ID: 15929

Risk Information

VPR

Risk Factor: Low

Score: 1.4

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 4.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS v3

Risk Factor: Medium

Base Score: 4

Temporal Score: 3.8

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Temporal Vector: CVSS:3.0/E:H/RL:O/RC:X

Vulnerability Information

CPE: cpe:/a:squid-cache:squid

Patch Publication Date: 10/5/2004

Vulnerability Publication Date: 10/5/2004

Reference Information

CVE: CVE-2004-2479

BID: 11865