Squid Proxy NULL URL Character Unauthorized Access Vulnerability

Bugtraq ID: 9778
Class: Input Validation Error
CVE: CVE-2004-0189
Remote: Yes
Local: No
Published: Mar 01 2004 12:00AM
Updated: Jul 12 2009 03:06AM
Credit: Discovery is credited to Mitch Adair.
Vulnerable: Turbolinux Turbolinux Workstation 8.0
Turbolinux Turbolinux Workstation 7.0
Turbolinux Turbolinux Server 8.0
Turbolinux Turbolinux Server 7.0
Turbolinux Appliance Server Workgroup Edition 1.0
Turbolinux Appliance Server Hosting Edition 1.0
Trustix Secure Linux 2.0
Trustix Secure Linux 1.5
Squid Web Proxy Cache 2.5 .STABLE4
Squid Web Proxy Cache 2.5 .STABLE3
Squid Web Proxy Cache 2.5 .STABLE1
Squid Web Proxy Cache 2.4 .STABLE7
Squid Web Proxy Cache 2.4 .STABLE6
Squid Web Proxy Cache 2.4 .STABLE2
Squid Web Proxy Cache 2.4
Squid Web Proxy Cache 2.3 .STABLE5
Squid Web Proxy Cache 2.3 .STABLE4
Squid Web Proxy Cache 2.1 PATCH2
Squid Web Proxy Cache 2.0 PATCH2
SGI ProPack 3.0
SGI ProPack 2.4
SGI ProPack 2.3
SCO Unixware 7.1.4
SCO Open Server 5.0.7
SCO Open Server 5.0.6
Redhat Enterprise Linux WS 3
Redhat Enterprise Linux ES 3
Redhat Enterprise Linux ES 2.1
Redhat Enterprise Linux AS 3
Redhat Enterprise Linux AS 2.1
Redhat Advanced Workstation for the Itanium Processor 2.1
Gentoo Linux 1.4 _rc3
Gentoo Linux 1.4 _rc2
Gentoo Linux 1.4 _rc1
Gentoo Linux 1.4
Gentoo Linux 1.2
Gentoo Linux 1.1 a
Gentoo Linux 0.7
Gentoo Linux 0.5
Not Vulnerable: Squid Web Proxy Cache 2.5 .STABLE5


 

Privacy Statement
Copyright 2010, SecurityFocus