Lucene search

[email protected]CVE-1999-0710

HistoryJan 04, 2000 - 5:00 a.m.

CVE-1999-0710

2000-01-0405:00:00

[email protected]

web.nvd.nist.gov

cve-1999-0710

squid package

red hat linux

remote attacks

cachemgr.cgi

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.2 Medium

AI Score

Confidence

Low

0.065 Low

EPSS

Percentile

93.8%

JSON

The Squid package in Red Hat Linux 5.2 and 6.0, and other distributions, installs cachemgr.cgi in a public web directory, which allows remote attackers to use it as an intermediary to connect to other systems.

Affected configurations

NVD

Node

redhatlinuxMatch5.2

redhatlinuxMatch6.0

CPENameOperatorVersion
redhat:linuxredhat linuxeq5.2
redhat:linuxredhat linuxeq6.0

CPE	Name	Operator	Version
redhat:linux	redhat linux	eq	5.2
redhat:linux	redhat linux	eq	6.0

References

fedoranews.org/updates/FEDORA--.shtml

www.debian.org/security/2004/dsa-576

www.redhat.com/archives/fedora-announce-list/2005-May/msg00025.html

www.redhat.com/support/errata/archives/rh52-errata-general.html#squid

www.redhat.com/support/errata/RHSA-1999-025.html

www.redhat.com/support/errata/RHSA-2005-489.html

www.securityfocus.com/bid/2059

exchange.xforce.ibmcloud.com/vulnerabilities/2385

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.2 Medium

AI Score

Confidence

Low

0.065 Low

EPSS

Percentile

93.8%

JSON

Related for CVE-1999-0710

openvas8 nessus7 nvd1 cvelist1 altlinux1 freebsd1 debiancve1 osv1 debian2 centos2 redhat2