Squid < 2.5.STABLE10 Set-Cookie Authentication Information Disclosure

medium Nessus Network Monitor Plugin ID 2669

Synopsis

The remote proxy server may facilitate the theft of authentication data.

Description

The remote Squid caching proxy, according to its version number, is vulnerable to an attack where the attacker gains access to Set-Cookie headers for another user. Such an attack would allow the attacker to gain access to resources with the credentials of another user.

Solution

Upgrade to squid 2.5.STABLE10 or higher.

See Also

http://www.squid-cache.org/Versions/v2/2.5/bugs

http://www.nessus.org/u?4e1802e8

Plugin Details

Severity: Medium

ID: 2669

Family: Web Servers

Published: 4/15/2005

Updated: 3/6/2019

Risk Information

VPR

Risk Factor: Medium

Score: 4.0

CVSS v2

Risk Factor: Medium

Base Score: 6.4

Temporal Score: 5.6

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N

CVSS v3

Risk Factor: Medium

Base Score: 6.5

Temporal Score: 6.2

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Temporal Vector: CVSS:3.0/E:X/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:squid-cache:squid

Patch Publication Date: 3/3/2005

Vulnerability Publication Date: 3/3/2005

Reference Information

CVE: CVE-2005-0626, CVE-2005-0718, CVE-2005-1519

BID: 12716, 13166, 13592