Lucene search
Ubuntu Security Notice (C) 2005-2019 Canonical, Inc. / NASL script (C) 2006-2016 Tenable Network Security, Inc.UBUNTU_USN-129-1.NASLHistoryJan 15, 2006 - 12:00 a.m.
Ubuntu 4.10 / 5.04 : squid vulnerability (USN-129-1)
2006-01-1500:00:00
Ubuntu Security Notice (C) 2005-2019 Canonical, Inc. / NASL script (C) 2006-2016 Tenable Network Security, Inc.
www.tenable.com
12
It was discovered that Squid did not verify the validity of DNS server responses. When Squid is started, it opens a DNS client UDP port whose number is randomly assigned by the operating system. Unless your network firewall is configured to accept DNS responses only from known good nameservers, this vulnerability allowed users within the local network to inject arbitrary DNS responses into Squid (‘DNS spoofing’).
This could be used to present different web pages to users from those they actually requested.
Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-129-1. The text
# itself is copyright (C) Canonical, Inc. See
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered
# trademark of Canonical, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(20519);
script_version("1.15");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");
script_cve_id("CVE-2005-1519");
script_xref(name:"USN", value:"129-1");
script_name(english:"Ubuntu 4.10 / 5.04 : squid vulnerability (USN-129-1)");
script_summary(english:"Checks dpkg output for updated packages.");
script_set_attribute(
attribute:"synopsis",
value:
"The remote Ubuntu host is missing one or more security-related
patches."
);
script_set_attribute(
attribute:"description",
value:
"It was discovered that Squid did not verify the validity of DNS server
responses. When Squid is started, it opens a DNS client UDP port whose
number is randomly assigned by the operating system. Unless your
network firewall is configured to accept DNS responses only from known
good nameservers, this vulnerability allowed users within the local
network to inject arbitrary DNS responses into Squid ('DNS spoofing').
This could be used to present different web pages to users from those
they actually requested.
Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
);
script_set_attribute(attribute:"solution", value:"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:P");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:squid");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:squid-cgi");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:squid-common");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:squidclient");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:4.10");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:5.04");
script_set_attribute(attribute:"patch_publication_date", value:"2005/05/18");
script_set_attribute(attribute:"plugin_publication_date", value:"2006/01/15");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"Ubuntu Security Notice (C) 2005-2019 Canonical, Inc. / NASL script (C) 2006-2016 Tenable Network Security, Inc.");
script_family(english:"Ubuntu Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");
exit(0);
}
include("audit.inc");
include("ubuntu.inc");
include("misc_func.inc");
if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/Ubuntu/release");
if ( isnull(release) ) audit(AUDIT_OS_NOT, "Ubuntu");
release = chomp(release);
if (! ereg(pattern:"^(4\.10|5\.04)$", string:release)) audit(AUDIT_OS_NOT, "Ubuntu 4.10 / 5.04", "Ubuntu " + release);
if ( ! get_kb_item("Host/Debian/dpkg-l") ) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Ubuntu", cpu);
flag = 0;
if (ubuntu_check(osver:"4.10", pkgname:"squid", pkgver:"2.5.5-6ubuntu0.9")) flag++;
if (ubuntu_check(osver:"4.10", pkgname:"squid-cgi", pkgver:"2.5.5-6ubuntu0.9")) flag++;
if (ubuntu_check(osver:"4.10", pkgname:"squid-common", pkgver:"2.5.5-6ubuntu0.9")) flag++;
if (ubuntu_check(osver:"4.10", pkgname:"squidclient", pkgver:"2.5.5-6ubuntu0.9")) flag++;
if (ubuntu_check(osver:"5.04", pkgname:"squid", pkgver:"2.5.8-3ubuntu1.2")) flag++;
if (ubuntu_check(osver:"5.04", pkgname:"squid-cgi", pkgver:"2.5.8-3ubuntu1.2")) flag++;
if (ubuntu_check(osver:"5.04", pkgname:"squid-common", pkgver:"2.5.8-3ubuntu1.2")) flag++;
if (ubuntu_check(osver:"5.04", pkgname:"squidclient", pkgver:"2.5.8-3ubuntu1.2")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : ubuntu_report_get()
);
exit(0);
}
else
{
tested = ubuntu_pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "squid / squid-cgi / squid-common / squidclient");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| canonical | ubuntu_linux | squid | p-cpe:/a:canonical:ubuntu_linux:squid |
| canonical | ubuntu_linux | squid-cgi | p-cpe:/a:canonical:ubuntu_linux:squid-cgi |
| canonical | ubuntu_linux | squid-common | p-cpe:/a:canonical:ubuntu_linux:squid-common |
| canonical | ubuntu_linux | squidclient | p-cpe:/a:canonical:ubuntu_linux:squidclient |
| canonical | ubuntu_linux | 4.10 | cpe:/o:canonical:ubuntu_linux:4.10 |
| canonical | ubuntu_linux | 5.04 | cpe:/o:canonical:ubuntu_linux:5.04 |
Related
debian
debian
[SECURITY] [DSA 751-1] New squid packages fix IP spoofing vulnerability
2005-07-11 15:06:33
[SECURITY] [DSA 751-1] New squid packages fix IP spoofing vulnerability
2005-07-11 00:00:00
cve
cve
CVE-2005-1519
2005-05-11 04:00:00
openvas
openvas
Debian Security Advisory DSA 751-1 (squid)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-751-1)
2008-01-17 00:00:00
FreeBSD Ports: squid
2008-09-04 00:00:00
nessus
nessus
Mandrake Linux Security Advisory : squid (MDKSA-2005:104)
2005-06-25 00:00:00
FreeBSD : squid -- DNS lookup spoofing vulnerability (7e97b288-c7ca-11d9-9e1e-c296ac722cb3)
2005-07-13 00:00:00
Debian DSA-751-1 : squid - IP spoofing
2005-07-11 00:00:00
debiancve
debiancve
CVE-2005-1519
2005-05-11 04:00:00
securityvulns
securityvulns
[SECURITY] [DSA 751-1] New squid packages fix IP spoofing vulnerability
2005-07-12 00:00:00
ubuntucve
ubuntucve
CVE-2005-1519
2005-05-11 00:00:00
ubuntu
ubuntu
Squid vulnerability
2005-05-18 00:00:00
freebsd
freebsd
squid -- DNS lookup spoofing vulnerability
2005-05-11 00:00:00
checkpoint_advisories
checkpoint_advisories
Squid Proxy DNS Response Spoofing (CVE-2005-1519; CVE-2007-3898)
2014-03-23 00:00:00
centos
centos
squid security update
2005-06-13 22:49:39
squid security update
2005-06-14 20:28:53
redhat
redhat
(RHSA-2005:489) squid security update
2005-06-13 00:00:00
(RHSA-2005:415) squid security update
2005-06-14 00:00:00
Related for UBUNTU_USN-129-1.NASL