Squid 代理认证证书转发信息泄露漏洞

admin
admin
admin
0
文章
0
评论
2022-07-22 09:20:58 CNNVD漏洞 来源:ZONE.CI 全球网 0 阅读模式

漏洞信息详情

Squid 代理认证证书转发信息泄露漏洞

  • CNNVD编号:CNNVD-200207-099
  • 危害等级: 低危
  • CVE编号: CVE-2002-0715
  • 漏洞类型: 设计错误
  • 发布时间: 2002-07-26
  • 威胁类型: 远程
  • 更新时间: 2005-10-20
  • 厂        商: squid
  • 漏洞来源: Vulnerabilities an...

漏洞简介

与代理认证证书有关的Squid 2.4.STABLE6之前版本存在漏洞。远程web站点可以获得用户的代理登录和密码。

漏洞公告

FreeBSD has released a Security Notice FreeBSD-SN-02:05. Users of FreeBSD systems are strongly urged to upgrade their ports tree to fix various reported issues. Further information can be found in the referenced Security Notice. SCO has released advisory CSSA-2003-SCO.9 to address this issue. Updates are available: National Science Foundation Squid Web Proxy 2.2

  • National Science Foundation squid-2.4.STABLE7-src.tar.gz ftp://ftp.squid-cache.org/pub/squid-2/STABLE/squid-2.4.STABLE7-src.tar .gz
National Science Foundation Squid Web Proxy 2.2 STABLE5
  • National Science Foundation squid-2.4.STABLE7-src.tar.gz ftp://ftp.squid-cache.org/pub/squid-2/STABLE/squid-2.4.STABLE7-src.tar .gz
  • SuSE squid-2.3.STABLE4-162.i386.rpm ftp://ftp.suse.com/pub/suse/i386/update/7.2/n2/squid-2.3.STABLE4-162.i 386.rpm
  • SuSE squid-2.3.STABLE4-162.i386.rpm ftp://ftp.suse.com/pub/suse/i386/update/7.3/n2/squid-2.3.STABLE4-162.i 386.rpm
  • SuSE squid-2.4.STABLE6-2.i386.rpm ftp://ftp.suse.com/pub/suse/i386/update/8.0/n2/squid-2.4.STABLE6-2.i38 6.rpm
  • SuSE squid-2.4.STABLE6-9.i386.patch.rpm ftp://ftp.suse.com/pub/suse/i386/update/8.0/n2/squid-2.4.STABLE6-9.i38 6.patch.rpm
  • SuSE squid-2.4.STABLE6-9.i386.rpm ftp://ftp.suse.com/pub/suse/i386/update/8.0/n2/squid-2.4.STABLE6-9.i38 6.rpm
  • SuSE squid-beta-2.4.STABLE1-105.i386.rpm ftp://ftp.suse.com/pub/suse/i386/update/7.2/n2/squid-beta-2.4.STABLE1- 105.i386.rpm
  • SuSE squid-beta-2.4.STABLE2-99.i386.rpm ftp://ftp.suse.com/pub/suse/i386/update/7.3/n2/squid-beta-2.4.STABLE2- 99.i386.rpm
  • SuSE squid2-2.2.STABLE5-223.i386.rpm ftp://ftp.suse.com/pub/suse/i386/update/6.4/n1/squid2-2.2.STABLE5-223. i386.rpm
  • SuSE squid2-2.2.STABLE5-223.i386.rpm ftp://ftp.suse.com/pub/suse/i386/update/7.0/n1/squid2-2.2.STABLE5-223. i386.rpm
  • SuSE squid2-2.2.STABLE5-224.i386.rpm ftp://ftp.suse.com/pub/suse/i386/update/7.1/n2/squid2-2.2.STABLE5-224. i386.rpm
  • SuSE squid23-2.3.STABLE4-81.i386.rpm ftp://ftp.suse.com/pub/suse/i386/update/6.4/n1/squid23-2.3.STABLE4-81. i386.rpm
  • SuSE squid23-2.3.STABLE4-81.i386.rpm ftp://ftp.suse.com/pub/suse/i386/update/7.0/n1/squid23-2.3.STABLE4-81. i386.rpm
  • SuSE squid23-2.3.STABLE4-82.i386.rpm ftp://ftp.suse.com/pub/suse/i386/update/7.1/n2/squid23-2.3.STABLE4-82. i386.rpm
National Science Foundation Squid Web Proxy 2.3 STABLE3
  • National Science Foundation squid-2.4.STABLE7-src.tar.gz ftp://ftp.squid-cache.org/pub/squid-2/STABLE/squid-2.4.STABLE7-src.tar .gz
National Science Foundation Squid Web Proxy 2.3 STABLE4
  • National Science Foundation squid-2.4.STABLE7-src.tar.gz ftp://ftp.squid-cache.org/pub/squid-2/STABLE/squid-2.4.STABLE7-src.tar .gz
  • SuSE squid-2.3.STABLE4-162.i386.rpm ftp://ftp.suse.com/pub/suse/i386/update/7.2/n2/squid-2.3.STABLE4-162.i 386.rpm
  • SuSE squid-2.3.STABLE4-162.i386.rpm ftp://ftp.suse.com/pub/suse/i386/update/7.3/n2/squid-2.3.STABLE4-162.i 386.rpm
  • SuSE squid-2.4.STABLE6-2.i386.rpm ftp://ftp.suse.com/pub/suse/i386/update/8.0/n2/squid-2.4.STABLE6-2.i38 6.rpm
  • SuSE squid-2.4.STABLE6-9.i386.patch.rpm ftp://ftp.suse.com/pub/suse/i386/update/8.0/n2/squid-2.4.STABLE6-9.i38 6.patch.rpm
  • SuSE squid-2.4.STABLE6-9.i386.rpm ftp://ftp.suse.com/pub/suse/i386/update/8.0/n2/squid-2.4.STABLE6-9.i38 6.rpm
  • SuSE squid-beta-2.4.STABLE1-105.i386.rpm ftp://ftp.suse.com/pub/suse/i386/update/7.2/n2/squid-beta-2.4.STABLE1- 105.i386.rpm
  • SuSE squid-beta-2.4.STABLE2-99.i386.rpm ftp://ftp.suse.com/pub/suse/i386/update/7.3/n2/squid-beta-2.4.STABLE2- 99.i386.rpm
  • SuSE squid2-2.2.STABLE5-223.i386.rpm ftp://ftp.suse.com/pub/suse/i386/update/6.4/n1/squid2-2.2.STABLE5-223. i386.rpm
  • SuSE squid2-2.2.STABLE5-223.i386.rpm ftp://ftp.suse.com/pub/suse/i386/update/7.0/n1/squid2-2.2.STABLE5-223. i386.rpm
  • SuSE squid2-2.2.STABLE5-224.i386.rpm ftp://ftp.suse.com/pub/suse/i386/update/7.1/n2/squid2-2.2.STABLE5-224. i386.rpm
  • SuSE squid23-2.3.STABLE4-81.i386.rpm ftp://ftp.suse.com/pub/suse/i386/update/6.4/n1/squid23-2.3.STABLE4-81. i386.rpm
  • SuSE squid23-2.3.STABLE4-81.i386.rpm ftp://ftp.suse.com/pub/suse/i386/update/7.0/n1/squid23-2.3.STABLE4-81. i386.rpm
  • SuSE squid23-2.3.STABLE4-82.i386.rpm ftp://ftp.suse.com/pub/suse/i386/update/7.1/n2/squid23-2.3.STABLE4-82. i386.rpm
National Science Foundation Squid Web Proxy 2.3
  • National Science Foundation squid-2.4.STABLE7-src.tar.gz ftp://ftp.squid-cache.org/pub/squid-2/STABLE/squid-2.4.STABLE7-src.tar .gz
  • SuSE s

参考网址

来源: www.squid-cache.org 链接:http://www.squid-cache.org/Versions/v2/2.4/bugs/ 来源: www.squid-cache.org 链接:http://www.squid-cache.org/Advisories/SQUID-2002_3.txt 来源: MANDRAKE 名称: MDKSA-2002:044 链接:http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-044.php 来源: REDHAT 名称: RHSA-2002:130 链接:http://rhn.redhat.com/errata/RHSA-2002-130.HTML 来源: BUGTRAQ 名称: 20020715 TSLSA-2002-0062 - squid 链接:http://marc.theaimsgroup.com/?l=bugtraq&m=102674543407606&w=2 来源: BID 名称: 5154 链接:http://www.securityfocus.com/bid/5154 来源: XF 名称: squid-auth-header-forwarding(9478) 链接:http://www.iss.net/security_center/static/9478.php 来源: REDHAT 名称: RHSA-2002:051 链接:http://rhn.redhat.com/errata/RHSA-2002-051.HTML 来源: CALDERA 名称: CSSA-2002-046.0 链接:ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-046.0.txt

受影响实体

  • Squid Squid:2.4.Stable6  

补丁

    暂无

weinxin
特别声明
本站(ZONE.CI)所有文章仅供技术研究,若将其信息做其他用途,由用户承担全部法律及连带责任,本站不承担任何法律及连带责任,请遵守中华人民共和国安全法.
ZONE.CI 全球网 | 安全领域涉猎者-乌云独行地带
咨询加Q:999999999
ZONE.CI 全球网 | 安全领域涉猎者-乌云独行地带
ZONE.CI 全球网 安全领域涉猎者-乌云独行地带
获取本源码
售前咨询加Q:120433200
站媒体网仿《知更鸟》模板
获取本源码 zmt6.com
评论:0   参与:  0