CERTA-2005-AVI-084

Vulnerability from certfr_avis - Published: 2005-02-21 - Updated: 2005-06-10

Une vulnérabilité découverte dans le serveur mandataire (proxy) Squid permet à un utilisateur mal intentionné d'effectuer un déni de service sur le serveur vulnérable.

Description

Squid est un serveur mandataire (proxy) pour plusieurs protocoles dont HTTP, HTTPS et FTP.

Une vulnérabilité présente dans le traitement de certaines réponses DNS (Domain Name System) permet à un utilisateur mal intentionné d'effectuer un déni de service au moyen de réponses DNS malicieusement constituées.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentaion).

Versions antérieures à Squid 2.5.8.

Impacted products
Vendor Product Description
References

Show details on source website
To clipboard 

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cP\u003eVersions ant\u00e9rieures \u00e0 Squid 2.5.8.\u003c/P\u003e",
  "content": "## Description\n\nSquid est un serveur mandataire (proxy) pour plusieurs protocoles dont\nHTTP, HTTPS et FTP.\n\nUne vuln\u00e9rabilit\u00e9 pr\u00e9sente dans le traitement de certaines r\u00e9ponses DNS\n(Domain Name System) permet \u00e0 un utilisateur mal intentionn\u00e9 d\u0027effectuer\nun d\u00e9ni de service au moyen de r\u00e9ponses DNS malicieusement constitu\u00e9es.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentaion).\n",
  "cves": [],
  "initial_release_date": "2005-02-21T00:00:00",
  "last_revision_date": "2005-06-10T00:00:00",
  "links": [
    {
      "title": "Mise \u00e0 jour de s\u00e9curit\u00e9 du paquetage NetBSD squid :",
      "url": "ftp://ftp.netbsd.org/pub/NetBSD/packages/pkgsrc/www/squid/README.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Debian DSA-688 du 23 f\u00e9vrier 2005 :",
      "url": "http://www.debian.org/security/2005/dsa-688"
    },
    {
      "title": "Mise \u00e0 jour de s\u00e9curit\u00e9 Fedora Core 2 pour Squid :",
      "url": "http://download.fedora.redhat.com/pun/fedora/linux/core/updates/2/"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2005:173 du 03 mars 2005 :",
      "url": "http://rhn.redhat.com/errata/RHSA-2005-173.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SA:2005:008 du 22 f\u00e9vrier    2005 :",
      "url": "http://www.novell.com/linux/security/advisories/2005_08_squid.html"
    },
    {
      "title": "Mise \u00e0 jour de s\u00e9curit\u00e9 Fedora Core 3 pour Squid :",
      "url": "http://download.fedora.redhat.com/pun/fedora/linux/core/updates/3/"
    },
    {
      "title": "Site Internet de Squid :",
      "url": "http://www.squid-cache.org"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 FreeBSD pour squid du 03 juin 2005 :",
      "url": "http://www.vuxml.org/freebsd/pkg-squid.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Gentoo GLSA-200502-25 du 18 f\u00e9vrier    2005 :",
      "url": "http://www.gentoo.org/security/en/glsa/glsa-200502-25.xml"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Mandrake MDKSA-2005:047 du 24 f\u00e9vrier    2005 :",
      "url": "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2005:047"
    }
  ],
  "reference": "CERTA-2005-AVI-084",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2005-02-21T00:00:00.000000"
    },
    {
      "description": "ajout du site Internet Squid, des r\u00e9f\u00e9rences aux bulletins de s\u00e9curit\u00e9 Debian et SUSE ainsi que de la r\u00e9f\u00e9rence CVE.",
      "revision_date": "2005-02-24T00:00:00.000000"
    },
    {
      "description": "ajout de la r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 Mandrake.",
      "revision_date": "2005-02-25T00:00:00.000000"
    },
    {
      "description": "ajout des r\u00e9f\u00e9rences aux mises \u00e0 jour de s\u00e9curit\u00e9 Fedora.",
      "revision_date": "2005-02-28T00:00:00.000000"
    },
    {
      "description": "ajout de la r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 NetBSD.",
      "revision_date": "2005-03-01T00:00:00.000000"
    },
    {
      "description": "ajout de la r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 RedHat.",
      "revision_date": "2005-03-04T00:00:00.000000"
    },
    {
      "description": "ajout de la r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 FreeBSD.",
      "revision_date": "2005-06-10T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 d\u00e9couverte dans le serveur mandataire (proxy) Squid\npermet \u00e0 un utilisateur mal intentionn\u00e9 d\u0027effectuer un d\u00e9ni de service\nsur le serveur vuln\u00e9rable.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans Squid",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Gentoo GLSA-200502-25 du 18 f\u00e9vrier 2005",
      "url": null
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.