Lucene search

[email protected]NVD:CVE-2004-2479

HistoryDec 31, 2004 - 5:00 a.m.

CVE-2004-2479

2004-12-3105:00:00

[email protected]

web.nvd.nist.gov

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6 Medium

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

82.7%

JSON

Squid Web Proxy Cache 2.5 might allow remote attackers to obtain sensitive information via URLs containing invalid hostnames that cause DNS operations to fail, which results in references to previously used error messages.

Affected configurations

NVD

Node

national_science_foundationsquid_web_proxy_cacheMatch2.5_stable1

national_science_foundationsquid_web_proxy_cacheMatch2.5_stable2

national_science_foundationsquid_web_proxy_cacheMatch2.5_stable3

national_science_foundationsquid_web_proxy_cacheMatch2.5_stable4

national_science_foundationsquid_web_proxy_cacheMatch2.5_stable5

national_science_foundationsquid_web_proxy_cacheMatch2.5_stable6

national_science_foundationsquid_web_proxy_cacheMatch2.5_stable7

References

fedoranews.org/updates/FEDORA--.shtml

secunia.com/advisories/13408

secunia.com/advisories/16977

securitytracker.com/id?1012466

www.osvdb.org/12282

www.redhat.com/support/errata/RHSA-2005-766.html

www.securityfocus.com/bid/11865

www.squid-cache.org/bugs/show_bug.cgi?id=1143

exchange.xforce.ibmcloud.com/vulnerabilities/18406

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9711

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6 Medium

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

82.7%

JSON

Related for NVD:CVE-2004-2479

cve1 openvas2 cvelist1 nessus3 debiancve1 redhat1 centos2