CVE-2001-0142Science Foundation Squid WEB Proxy vulnerability

3 documents3 sources
Severity
1.2LOWNVD
EPSS
0.1%
top 77.14%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
ImmunixMandrakesoft Mandrake LinuxNational Science Foundation Squid WEB Proxy+2 more
Timeline
PublishedMar 12
Latest updateApr 30

Description

squid 2.3 and earlier allows local users to overwrite arbitrary files via a symlink attack in some configurations.

CVSS vector

AV:L/AC:H/C:N/I:P/A:NExploitability: 1.9 | Impact: 2.9

Affected Packages5 packages

NVDredhat/linux7.0
NVDimmunix/immunix7.0_beta
NVDtrustix/secure_linux1.1, 1.2+1
NVDmandrakesoft/mandrake_linux5 versions+4

Patches

Patch: archives.neohapsis.comPatch: www.linux-mandrake.comPatch: www.securityfocus.com

🔴Vulnerability Details

2
GHSA
GHSA-j4fw-2x7f-vr9f: squid 22022-04-30
CVEList
CVE-2001-0142: squid 22001-05-07
CVE-2001-0142 — LOW severity | cvebase