Squid 2.5.x < 2.5.STABLE8 Information Disclosure

Medium Nessus Network Monitor Plugin ID 2448

Synopsis

The remote proxy server can be tricked into disclosing portions of its memory.

Description

The remote host running a Squid proxy on this port.
There is a vulnerability in the remote version of this software that may allow an attacker to obtain sensitive information via URLs containing invalid hostnames that cause DNS operations to fail, which results in references to previously used error messages.

Solution

Upgrade to Squid 2.5.STABLE8, 3.0-PRE4, or apply the vendor patches.

See Also

http://bugs.squid-cache.org/show_bug.cgi?id=1143

http://www.squid-cache.org/Versions/v2/2.5/bugs

Plugin Details

Severity: Medium

ID: 2448

File Name: 2448.prm

Family: Web Servers

Published: 2004/10/12

Modified: 2016/11/23

Dependencies: 3389

Nessus ID: 15929

Risk Information

Risk Factor: Medium

CVSSv2

Base Score: 5

Temporal Score: 4.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Temporal Vector: CVSS2#E:H/RL:OF/RC:ND

CVSSv3

Base Score: 5.3

Temporal Score: 5.1

Vector: CVSS3#AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Temporal Vector: CVSS3#E:H/RL:O/RC:X

Vulnerability Information

CPE: cpe:/a:squid-cache:squid

Patch Publication Date: 2004/10/05

Vulnerability Publication Date: 2004/10/05

Reference Information

CVE: CVE-2004-2479

BID: 11865