Lucene search
Ubuntu.comUB:CVE-2005-0194HistoryMay 02, 2005 - 12:00 a.m.
CVE-2005-0194
2005-05-0200:00:00
ubuntu.com
ubuntu.com
11
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.009 Low
EPSS
Percentile
82.7%
Squid 2.5, when processing the configuration file, parses empty Access
Control Lists (ACLs), including proxy_auth ACLs without defined auth
schemes, in a way that effectively removes arguments, which could allow
remote attackers to bypass intended ACLs if the administrator ignores the
parser warnings.
Related
openvas
openvas
FreeBSD Ports: squid
2008-09-04 00:00:00
FreeBSD Ports: squid
2008-09-04 00:00:00
Ubuntu: Security Advisory (USN-84-1)
2022-08-26 00:00:00
freebsd
freebsd
squid -- confusing results on empty acl declarations
2004-12-21 00:00:00
nessus
nessus
FreeBSD : squid -- confusing results on empty acl declarations (a30e5e44-5440-11d9-9e1e-c296ac722cb3)
2005-07-13 00:00:00
Ubuntu 4.10 : squid vulnerabilities (USN-84-1)
2006-01-15 00:00:00
Mandrake Linux Security Advisory : squid (MDKSA-2005:078)
2005-05-02 00:00:00
debiancve
debiancve
CVE-2005-0194
2005-05-02 04:00:00
cve
cve
CVE-2005-0194
2005-05-02 04:00:00
cert
cert
Squid fails to parse empty access control lists correctly
2005-02-21 00:00:00
ubuntu
ubuntu
Squid vulnerabilities
2005-02-21 00:00:00
debian
debian
[SECURITY] [DSA 667-1] New squid packages fix several vulnerabilities
2005-02-04 16:35:59
[SECURITY] [DSA 667-1] New squid packages fix several vulnerabilities
2005-02-04 16:35:59
osv
osv
squid - several
2005-02-04 00:00:00
gentoo
gentoo
Squid: Multiple vulnerabilities
2005-01-16 00:00:00
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.009 Low
EPSS
Percentile
82.7%
Related for UB:CVE-2005-0194