Squid < 2.4.STABLE4 Buffer Overflow

High Nessus Network Monitor Plugin ID 1523

Synopsis

The remote proxy server is affected by various buffer overflows.

Description

The remote Squid caching proxy, according to its version number, is vulnerable to various buffer overflows. This could allow remote attackers to cause a denial of service (core dump) and possibly execute arbitrary code with an ftp:// URL with a larger number of special characters, which exceed the buffer when Squid URL-escapes the characters.

Solution

Upgrade to Squid 2.4.STABLE4 or higher.

See Also

http://www.squid-cache.org/Advisories/SQUID-2002_1.txt

http://www.squid-cache.org/Versions/v2/2.4/bugs

Plugin Details

Severity: High

ID: 1523

File Name: 1523.prm

Family: Web Servers

Published: 2004/08/18

Modified: 2016/11/23

Dependencies: 3389

Nessus ID: 10923

Risk Information

Risk Factor: High

CVSSv2

Base Score: 7.5

Temporal Score: 6.2

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

CVSSv3

Base Score: 7.3

Temporal Score: 6.8

Vector: CVSS3#AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Temporal Vector: CVSS3#E:F/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:squid-cache:squid

Patch Publication Date: 2002/03/08

Vulnerability Publication Date: 2002/03/08

Reference Information

CVE: CVE-2002-0068

BID: 4148