CVE-2005-1519

9 documents8 sources

Severity

6.4MEDIUM

EPSS

24.6%

top 3.87%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Squid Squid

Timeline

PublishedMay 11

Latest updateMay 1

Description

Squid 2.5 STABLE9 and earlier, when the DNS client port is unfiltered and the environment does not prevent IP spoofing, allows remote attackers to spoof DNS lookups.

CVSS vector

AV:N/AC:L/C:N/I:P/A:PExploitability: 10.0 | Impact: 4.9

Affected Packages2 packages

▶Debiansquid< 2.5.9-9+3

▶NVDsquid/squid2.5_stable9

Patches

Patch: secunia.com ↗Patch: www.squid-cache.org ↗Patch: secunia.com ↗

🔴Vulnerability Details

GHSA

GHSA-7j89-g7xj-9c6w: Squid 2↗2022-05-01

▶

CVEList

CVE-2005-1519: Squid 2↗2005-05-11

▶

OSV

CVE-2005-1519: Squid 2↗2005-05-11

▶

📋Vendor Advisories

Ubuntu

Squid vulnerability↗2005-05-18

▶

Red Hat

security flaw↗2005-05-11

▶

Debian

CVE-2005-1519: squid - Squid 2.5 STABLE9 and earlier, when the DNS client port is unfiltered and the en...↗2005

▶

💬Community

Bugzilla

CVE-2005-1519 security flaw↗2018-08-16

▶

Bugzilla

Squid Multiple Vulnerabilities (CVE-2004-0541 CVE-2004-0832 CVE-2004-0918 CVE-2005-0094 CVE-2005-0095 CVE-2005-0096 CVE-2005-0097 CVE-2005-0446 CVE-2005-0626 CVE-2005-0718 CVE-1999-0710 CVE-2005-1345↗2004-10-11

▶