CVE-2005-1519

Squid 2.5 STABLE9 and earlier, when the DNS client port is unfiltered and the environment does not prevent IP spoofing, allows remote attackers to spoof DNS lookups.

CVSS v2.0 6.4 MEDIUM

6.4^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:N/I:P/A:P

Exploitability : 10.0 / Impact : 4.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://fedoranews.org/updates/FEDORA--.shtml
http://secunia.com/advisories/15294	Patch
http://www.debian.org/security/2005/dsa-751
http://www.redhat.com/archives/fedora-announce-list/2005-May/msg00025.html
http://www.redhat.com/support/errata/RHSA-2005-489.html
http://www.securityfocus.com/bid/13592
http://www.squid-cache.org/Versions/v2/2.5/bugs/#squid-2.5.STABLE9-dns_query	Patch
http://www.vupen.com/english/advisories/2005/0521
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9976

Configurations

Configuration 1 (hide)

cpe:2.3:a:squid:squid:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2005-05-11 04:00

Updated : 2023-12-10 10:28

NVD link : CVE-2005-1519

Mitre link : CVE-2005-1519

CVE.ORG link : CVE-2005-1519

JSON object : View

Products Affected

squid

squid

CWE

NVD-CWE-Other

{"id": "CVE-2005-1519", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.4, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 4.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2005-05-11T04:00:00.000", "references": [{"url": "http://fedoranews.org/updates/FEDORA--.shtml", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/15294", "tags": ["Patch"], "source": "secalert@redhat.com"}, {"url": "http://www.debian.org/security/2005/dsa-751", "source": "secalert@redhat.com"}, {"url": "http://www.redhat.com/archives/fedora-announce-list/2005-May/msg00025.html", "source": "secalert@redhat.com"}, {"url": "http://www.redhat.com/support/errata/RHSA-2005-489.html", "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/bid/13592", "source": "secalert@redhat.com"}, {"url": "http://www.squid-cache.org/Versions/v2/2.5/bugs/#squid-2.5.STABLE9-dns_query", "tags": ["Patch"], "source": "secalert@redhat.com"}, {"url": "http://www.vupen.com/english/advisories/2005/0521", "source": "secalert@redhat.com"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9976", "source": "secalert@redhat.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Squid 2.5 STABLE9 and earlier, when the DNS client port is unfiltered and the environment does not prevent IP spoofing, allows remote attackers to spoof DNS lookups."}], "lastModified": "2017-10-11T01:30:08.890", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:squid:squid:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "01315F91-D843-49EC-81B2-0FDDD95E0789", "versionEndIncluding": "2.5_stable9"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}